Content-Security-Policy | default-src 'self'; font-src 'self' fonts.gstatic.com; script-src 'self' ajax.googleapis.com www.google-analytics.com; connect-src 'self' www.google-analytics.com; img-src 'self' www.google-analytics.com; style-src 'self' fonts.googleapis.com 'sha256-F5Z3PscvRTNX5BVs1l7IQ2GT2hKIpTIloHTZKahzx2A='; |
Strict-Transport-Security | max-age=2592000; includeSubdomains |
X-Content-Type-Options | nosniff |
X-Frame-Options | DENY |
X-XSS-Protection | 1; mode=block |
Expires | Mon, 28 Aug 2017 11:43:49 GMT |
ETag | "lah5RQ" |
X-Cloud-Trace-Context | cd6bdc1374f15e3aa317415a4030173a |
Content-Type | text/html |
Content-Encoding | gzip |
Server | Google Frontend |
Cache-Control | public, max-age=600 |
Age | 0 |
Alt-Svc | quic=":443"; ma=2592000; v="39,38,37,35" |