Server | Apache |
Cache-Control | no-store |
Access-Control-Allow-Origin | * |
Access-Control-Max-Age | 1728000 |
X-XSS-Protection | 1; mode=block |
Pragma | no-cache |
X-Request-Id | 82f5f260-9d1c-4e81-976b-e898c8509582 |
Access-Control-Allow-Headers | content-type |
Access-Control-Allow-Methods | POST, GET, DELETE, PUT |
X-Runtime | 0.223820 |
X-Content-Type-Options | nosniff |
Content-Security-Policy | default-src 'self' 'unsafe-inline' *.arri.de; font-src 'self' 'unsafe-inline' fonts.gstatic.com; img-src 'self' data: www.google-analytics.com; media-src 'self' arri.de *.arri.de; script-src 'self' 'unsafe-inline' 'unsafe-eval' www.google-analytics.com *.newrelic.com *.nr-data.net; style-src 'self' 'unsafe-inline' fonts.googleapis.com; frame-ancestors 'self' arri.de *.arri.de yamdu.com *.yamdu.com arriwebgate.com *.arriwebgate.com arriwebgate.de *.arriwebgate.de webgate.media *.webgate.media webgate.de *.webgate.de |
X-Powered-By | Phusion Passenger 5.1.1 |
Strict-Transport-Security | max-age=31536000; includeSubDomains; preload |
ETag | W/"bbde669591289068daa0e7c07635162e-gzip" |
Status | 200 OK |
Vary | Accept-Encoding |
Content-Encoding | gzip |
Keep-Alive | timeout=5, max=100 |
Connection | Keep-Alive |
Transfer-Encoding | chunked |
Content-Type | text/html; charset=utf-8 |