Cache-Control | no-cache |
X-Frame-Options | SAMEORIGIN |
X-Content-Type-Options | nosniff |
Strict-Transport-Security | max-age=2592000; includeSubDomains |
Content-Security-Policy | default-src 'self'; script-src 'self' https: ajax.googleapis.com 'unsafe-inline' 'unsafe-eval'; style-src 'self' https fast.fonts.com 'unsafe-inline'; img-src 'self' data: www.google.com https://www.gravatar.com; frame-src 'self' docs.google.com; font-src 'self' https fast.fonts.com |
Content-Encoding | gzip |
Vary | Accept-Encoding,User-Agent |
Connection | keep-alive, close |
Content-Type | text/html; charset=UTF-8 |