Content-Type | text/html;charset=utf-8 |
Transfer-Encoding | chunked |
Connection | keep-alive |
Vary | Accept-Encoding, Accept-Encoding |
Content-Language | de |
Strict-Transport-Security | max-age=63072000 |
X-Content-Type-Options | nosniff |
X-Frame-Options | SAMEORIGIN |
X-Xss-Protection | 1; mode=block |
Content-Security-Policy | script-src https: data: 'unsafe-inline' 'unsafe-eval' https://*.gs1-germany.de https://apis.google.com https://connect.facebook.net https://fast.fonts.net https://googleads.g.doubleclick.net https://*.google-analytics.com https://www.etracker.de https://*.etracker.com https://*.youtube.com https://*.twitter.com https://*.vimeo.com; style-src https: 'unsafe-inline' https://*.gs1-germany.de https://apis.google.com https://connect.facebook.net https://fast.fonts.net https://googleads.g.doubleclick.net https://*.google-analytics.com https://www.etracker.de https://*.etracker.com https://*.youtube.com https://*.twitter.com https://*.vimeo.com; |
X-Content-Security-Policy | script-src https: data: 'unsafe-inline' 'unsafe-eval' https://*.gs1-germany.de https://apis.google.com https://connect.facebook.net https://fast.fonts.net https://googleads.g.doubleclick.net https://*.google-analytics.com https://www.etracker.de https://*.etracker.com https://*.youtube.com https://*.twitter.com https://*.vimeo.com; style-src https: 'unsafe-inline' https://*.gs1-germany.de https://apis.google.com https://connect.facebook.net https://fast.fonts.net https://googleads.g.doubleclick.net https://*.google-analytics.com https://www.etracker.de https://*.etracker.com https://*.youtube.com https://*.twitter.com https://*.vimeo.com; |
X-Powered-By | Golden Unicorns |
Server | nginx, GS1 Infrastructure/2.0 |
Content-Encoding | gzip |