Server | nginx |
Content-Type | text/html; charset=utf-8 |
Transfer-Encoding | chunked |
Connection | keep-alive |
Vary | Accept-Encoding |
Cache-Control | no-cache, no-store, must-revalidate |
Expires | 0 |
Strict-Transport-Security | max-age=15768000; includeSubDomains |
X-Frame-Options | SAMEORIGIN |
Content-Security-Policy | default-src 'self' 'unsafe-inline' 'unsafe-eval' data: https://d1j6rnlhfrf76y.cloudfront.net https://*.intercom.io https://*.intercomcdn.com https://*.intercomassets.com https://*.vimeocdn.com https://*.zoocdn.com https://cdn.heapanalytics.com https://heapanalytics.com https://js.stripe.com https://www.googleadservices.com https://connect.facebook.net; frame-src 'self' https://bricklane.com https://js.stripe.com https://*.vimeo.com; connect-src 'self' https://vimeo.com https://*.intercom.io wss://*.intercom.io https://cdn.heapanalytics.com https://formkeep.com https://api.stripe.com |
Content-Encoding | gzip |