Server | cloudflare-nginx |
Content-Type | text/html; charset=utf-8 |
Transfer-Encoding | chunked |
Connection | keep-alive |
Cache-Control | max-age=0, private, must-revalidate |
Content-Encoding | gzip |
Content-Security-Policy | default-src https: 'self'; connect-src 'self' https://bam.nr-data.net https://www.dropbox.com https://s3.amazonaws.com/gumroad https://s3.amazonaws.com/gumroad/ https://2773320153.log.optimizely.com http://2773320153.log.optimizely.com https://d2dw6lv4z9w0e2.cloudfront.net/ https://*.braintreegateway.com https://gumroad.com; font-src * data:; frame-src *; img-src * data:; media-src *; object-src *; script-src 'unsafe-eval' https://js.stripe.com https://api.stripe.com https://*.braintreegateway.com https://www.paypalobjects.com https://www.google-analytics.com https://cdn.boostable.com/tr.js https://*.facebook.net https://*.facebook.com https://*.newrelic.com https://*.nr-data.net https://www.dropbox.com https://s.ytimg.com https://www.google.com https://ssl.p.jwpcdn.com https://gumroad.us3.list-manage.com https://cdn.optimizely.com https://ping.smyte.com https://api.smyte.com https://gumroad.com https://static-1.gumroad.com; style-src 'self' 'unsafe-inline' https://s.ytimg.com https://static-1.gumroad.com; |
Status | 200 OK |
Strict-Transport-Security | max-age=31536000 |
Vary | Accept-Encoding |
X-Content-Type-Options | nosniff |
X-Download-Options | noopen |
X-GR | PROD |
X-Permitted-Cross-Domain-Policies | none |
X-Request-Id | 89fa6ab5-6bc5-4afe-a8b7-24830f4b48e0 |
X-Revision | NOT YET |
X-Runtime | 0.024962 |
X-XSS-Protection | 1; mode=block |
CF-RAY | 2401728b604b21c8-EWR |