Server | nginx |
Content-Type | text/html |
Transfer-Encoding | chunked |
Connection | keep-alive |
Content-Security-Policy | object-src 'none';referrer no-referrer;script-src 'self' 'unsafe-inline' blob:;style-src 'self' 'unsafe-inline';upgrade-insecure-requests |
X-Content-Security-Policy | object-src 'none';referrer no-referrer;script-src 'self' 'unsafe-inline' blob:;style-src 'self' 'unsafe-inline';upgrade-insecure-requests |
X-Frame-Options | deny |
X-WebKit-CSP | object-src 'none';referrer no-referrer;script-src 'self' 'unsafe-inline' blob:;style-src 'self' 'unsafe-inline';upgrade-insecure-requests |
Expires | Mon, 06 Mar 2017 12:45:10 GMT |
Cache-Control | private, max-age=31536000, public, max-age=600 |
ETag | "nTXFfQ" |
X-Cloud-Trace-Context | 4d357d7a38b49c79f465b488287f2eff |
Content-Encoding | gzip |
Public-Key-Pins | max-age=5184000; pin-sha256="6XpJmN2Vi9wAEAbwwGWo5LGqrJx/3JM/6yehSn4BC6c="; pin-sha256="dFdhvdTrRgXSvCFDEid60XZcDPnP5t8jzG1UeUNmpZc=" |
Strict-Transport-Security | max-age=31536000; includeSubdomains; preload |
X-XSS-Protection | 1; mode=block |