Server | e-works media, inc. |
Strict-Transport-Security | max-age=31536000; includeSubDomains; preload |
X-Frame-Options | SAMEORIGIN |
X-XSS-Protection | 1; mode=block |
X-Content-Type-Options | nosniff |
Access-Control-Allow-Origin | |
Access-Control-Allow-Credentials | true |
Access-Control-Allow-Headers | origin, x-requested-with, content-type |
Access-Control-Allow-Methods | HEAD, PUT, GET, POST, DELETE, OPTIONS |
Expires | Thu, 19 Nov 1981 08:52:00 GMT |
Cache-Control | max-age=31536000, private, must-revalidate |
Pragma | no-cache |
Content-Security-Policy-Report-Only | default-src 'self' *.bearingworks.com; connect-src 'self' *.bearingworks.com http://*.twitter.com https://*.twitter.com; font-src 'self' *.bearingworks.com http://*.gstatic.com https://*.gstatic.com http://*.googleapis.com https://*.googleapis.com data:; child-src 'self' *.bearingworks.com http://*.facebook.com https://*.facebook.com http://*.twitter.com https://*.twitter.com http://*.google.com https://*.google.com http://*.pinterest.com https://*.pinterest.com javascript:; frame-src 'self' *.bearingworks.com http://*.braintreegateway.com https://*.braintreegateway.com http://*.facebook.com https://*.facebook.com http://*.twitter.com https://*.twitter.com http://*.google.com https://*.google.com http://*.pinterest.com https://*.pinterest.com javascript:; img-src 'self' *.bearingworks.com http://*.pinterest.com https://*.pinterest.com http://*.pinimg.com https://*.pinimg.com https://*.twitter.com https://*.facebook.com http://*.gstatic.com https://*.pinimg.com http://*.googleapis.com https://*.googleapis.com http://*.google-analytics.com https://*.google-analytics.com data:; media-src 'self' *.bearingworks.com; object-src 'self' *.bearingworks.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' 'nonce-d332ddd4192b34ef825c677bb2a3250c651f8917' 'nonce-1e8ec2b2589ce9133dcefbed9c6e8e723aceec42' 'nonce-202e9a0bd7c91fdc6b4385cd5a0fff0ba9edb340' *.bearingworks.com http://*.google-analytics.com https://*.google-analytics.com http://*.braintreegateway.com https://*.braintreegateway.com http://*.facebook.com https://*.facebook.com http://*.facebook.net https://*.facebook.net http://*.twitter.com https://*.twitter.com http://*.google.com https://*.google.com http://*.gstatic.com https://*.gstatic.com http://*.googleapis.com https://*.googleapis.com http://*.pinterest.com https://*.pinterest.com; style-src 'unsafe-inline' 'self' *.bearingworks.com http://*.gstatic.com https://*.gstatic.com http://*.googleapis.com https://*.googleapis.com; report-uri /csp |
Content-Encoding | gzip |
Vary | Accept-Encoding |
Keep-Alive | timeout=2, max=500 |
Connection | Keep-Alive |
Transfer-Encoding | chunked |
Content-Type | text/html; charset=utf-8 |