Server | nginx/1.13.3 |
Content-Type | text/html; charset=utf-8 |
Transfer-Encoding | chunked |
Connection | keep-alive |
X-Powered-By | Express |
Cache-Control | max-age=600 |
ETag | W/"320a-RDBE3slJ5XkabdNSNU9PRwQzGDo" |
Vary | Accept-Encoding, Accept-Encoding |
Expires | Sat, 10 Mar 2018 16:54:57 GMT |
Front-End-Https | on |
Strict-Transport-Security | max-age=63072000; includeSubDomains; preload |
X-Frame-Options | DENY |
X-Content-Type-Options | nosniff |
X-Xss-Protection | 1; mode=block |
Content-Security-Policy | default-src https: blob: wss: 'unsafe-inline' 'unsafe-eval' |
Referrer-Policy | strict-origin-when-cross-origin |
Content-Encoding | gzip |