Server | nginx/1.10.3 (Ubuntu) |
Content-Type | text/html; charset=utf-8 |
Transfer-Encoding | chunked |
Connection | keep-alive |
X-DNS-Prefetch-Control | off |
X-Frame-Options | SAMEORIGIN |
X-Download-Options | noopen |
X-Content-Type-Options | nosniff |
X-XSS-Protection | 1; mode=block |
ETag | W/"f76-tO4/mzaOTMyWCjMzETn5luIXhRM" |
set-cookie | connect.sid=s%3AQMiobvvX4o7Z-67UeXJWuzxV1yfRJVw6.lh0v5wz%2BkrcLYwWI0chCKelm5O1iRLgrMMXZ1QdJNLg; Path=/; Expires=Sat, 09 Mar 2019 17:04:48 GMT; HttpOnly |
Strict-Transport-Security | max-age=15552000; includeSubDomains, max-age=31536000; |
Content-Security-Policy-Report-Only | default-src https:; script-src https: 'unsafe-eval' 'unsafe-inline'; style-src https: 'unsafe-inline'; img-src https: data:; font-src https: data:; report-uri /csp-report |
Content-Encoding | gzip |