Server | nginx |
Content-Type | text/html; charset=utf-8 |
Transfer-Encoding | chunked |
Connection | keep-alive |
X-DNS-Prefetch-Control | off |
X-Download-Options | noopen |
X-XSS-Protection | 1; mode=block |
ETag | W/"3082-XGQf70ZeeD9A4cVUEQFW+A" |
set-cookie | connect.sid=s%3AxLQ9rqrm5Bc0sBfGGq4bzYPGbcklWxSM.sJdwPpk3KFx2J6YsrJb%2FK9S%2FUDeBOYYDCZqrTGR6k3A; Path=/; secure; HttpOnly; HttpOnly |
Vary | Accept-Encoding |
Content-Encoding | gzip |
X-Frame-Options | SAMEORIGIN, SAMEORIGIN |
Strict-Transport-Security | max-age=31536000; includeSubDomains; |
X-Content-Type-Options | nosniff, nosniff |
X-Content-Security-Policy | reflected-xss block |