Server | nginx |
Content-Type | text/html; charset=UTF-8 |
Connection | keep-alive |
Cache-Control | max-age=0, no-cache, no-store, must-revalidate |
Content-Security-Policy | base-uri 'none'; default-src 'none'; child-src *; connect-src 'self'; font-src 'self' data: https://maxcdn.bootstrapcdn.com https://code.ionicframework.com https://fonts.gstatic.com; form-action 'self'; frame-ancestors *; img-src 'self' data: http://placehold.it https://d37bawo1ufa1bl.cloudfront.net https://www.google-analytics.com https://hartjewonenprod.blob.core.windows.net; media-src 'none'; object-src 'none'; script-src 'self' https://code.jquery.com https://cdnjs.cloudflare.com https://cdn.jsdelivr.net https://www.google-analytics.com https://www.googletagmanager.com 'unsafe-inline' 'unsafe-eval'; style-src 'self' https://maxcdn.bootstrapcdn.com https://code.ionicframework.com https://fonts.googleapis.com https://cdnjs.cloudflare.com https://cdn.jsdelivr.net 'unsafe-inline'; |
Strict-Transport-Security | max-age=15724800; |
X-Content-Type-Options | nosniff |
X-Download-Options | noopen |
X-Frame-Options | sameorigin |
X-Permitted-Cross-Domain-Policies | none |
X-XSS-Protection | 1; mode=block |
Referrer-Policy | same-origin |
Vary | Accept-Encoding |
Content-Encoding | gzip |
Pragma | no-cache |
Expires | Wed, 11 Jan 1984 05:00:00 GMT |