Server | cloudflare-nginx |
Content-Type | text/html; charset=utf-8 |
Transfer-Encoding | chunked |
Connection | keep-alive |
Strict-Transport-Security | max-age=15552000 |
X-Frame-Options | DENY |
Content-Security-Policy | default-src 'self'; connect-src wss://notifier.bitskins.com:8443 'self' api.stripe.com https://www.google-analytics.com/collect; font-src 'self' fonts.gstatic.com cdnjs.cloudflare.com; frame-src js.stripe.com; img-src https: data:; media-src 'none'; object-src 'none'; script-src 'self' js.stripe.com api.stripe.com www.google-analytics.com cdnjs.cloudflare.com js.pusher.com; style-src 'self' 'unsafe-inline' fonts.googleapis.com cdnjs.cloudflare.com; |
X-XSS-Protection | 1; mode=block |
X-Content-Type-Options | nosniff |
X-Download-Options | noopen |
X-Permitted-Cross-Domain-Policies | none |
Cache-Control | no-cache, no-store, max-age=0, must-revalidate |
Pragma | no-cache |
Expires | Fri, 01 Jan 1990 00:00:00 GMT |
X-Request-Id | 1d1c5476-6919-4612-8bc0-3b6e7c6d57a4 |
X-Runtime | 0.036622 |
Front-End-Https | on |
CF-RAY | 23f7954b9d431852-EWR |
Content-Encoding | gzip |