Content-Type | text/html; charset=utf-8 |
Transfer-Encoding | chunked |
Connection | keep-alive |
X-Content-Type-Options | nosniff |
Referrer-Policy | no-referrer-when-downgrade |
X-Powered-By | PHP/5.6.32 |
X-Drupal-Cache | HIT |
Content-Security-Policy | default-src 'self'; script-src 'self' *.googletagmanager.com *.youtube.com *.google-analytics.com *.ytimg.com *.facebook.net *.facebook.com *.pinterest.com *.swaven.com 'unsafe-eval' 'unsafe-inline'; style-src 'self' *.googleapis.com 'unsafe-inline'; img-src 'self' *.google-analytics.com *.doubleclick.net *.facebook.com *.google.com *.google.fr; frame-src 'self' *.doubleclick.net *.facebook.com *.swaven.com; font-src 'self' *.googleapis.com *.gstatic.com *.googleusercontent.com; connect-src 'self' *.swaven.com; report-uri /admin/config/system/seckit/csp-report |
X-Content-Security-Policy | default-src 'self'; script-src 'self' *.googletagmanager.com *.youtube.com *.google-analytics.com *.ytimg.com *.facebook.net *.facebook.com *.pinterest.com *.swaven.com 'unsafe-eval' 'unsafe-inline'; style-src 'self' *.googleapis.com 'unsafe-inline'; img-src 'self' *.google-analytics.com *.doubleclick.net *.facebook.com *.google.com *.google.fr; frame-src 'self' *.doubleclick.net *.facebook.com *.swaven.com; font-src 'self' *.googleapis.com *.gstatic.com *.googleusercontent.com; connect-src 'self' *.swaven.com; report-uri /admin/config/system/seckit/csp-report |
X-WebKit-CSP | default-src 'self'; script-src 'self' *.googletagmanager.com *.youtube.com *.google-analytics.com *.ytimg.com *.facebook.net *.facebook.com *.pinterest.com *.swaven.com 'unsafe-eval' 'unsafe-inline'; style-src 'self' *.googleapis.com 'unsafe-inline'; img-src 'self' *.google-analytics.com *.doubleclick.net *.facebook.com *.google.com *.google.fr; frame-src 'self' *.doubleclick.net *.facebook.com *.swaven.com; font-src 'self' *.googleapis.com *.gstatic.com *.googleusercontent.com; connect-src 'self' *.swaven.com; report-uri /admin/config/system/seckit/csp-report |
X-XSS-Protection | 1; mode=block |
X-Frame-Options | SameOrigin |
Strict-Transport-Security | max-age=31536000; includeSubDomains |
Content-Language | fr |
X-Generator | Drupal 7 (http://drupal.org) |
Cache-Control | public, max-age=86400 |
Last-Modified | Wed, 14 Feb 2018 16:08:43 GMT |
Expires | Sun, 19 Nov 1978 05:00:00 GMT |
Vary | Cookie,Accept-Encoding |
Expect-CT | max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct" |
Server | cloudflare |
CF-RAY | 3ed149b428b83fbf-YUL |
Content-Encoding | gzip |