Server | Cowboy |
Connection | keep-alive |
X-Frame-Options | SAMEORIGIN |
X-Xss-Protection | 1; mode=block |
X-Content-Type-Options | nosniff |
Content-Security-Policy | font-src * data:; script-src 'self' 'unsafe-inline' 'unsafe-eval' data: d2wy8f7a9ursnm.cloudfront.net d6j4v2sf7pvvc.cloudfront.net *.zopim.com cdn.mouseflow.com www.google-analytics.com ajax.googleapis.com s3.amazonaws.com/assets.heroku.com/boomerang/boomerang.js https://www.gstatic.com checkout.stripe.com www.googleadservices.com www.googletagmanager.com cdn.jsdelivr.net; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com fonts.googleapis.com netdna.bootstrapcdn.com d1l4caeyiolul.cloudfront.net d6j4v2sf7pvvc.cloudfront.net s3.amazonaws.com/assets.heroku.com/boomerang/boomerang.css https://www.gstatic.com checkout.stripe.com cdn.jsdelivr.net; report-uri /csp/report |
Content-Type | text/html; charset=utf-8 |
Etag | W/"6ac365cdaebaf990e7b8072777fcc281" |
Cache-Control | max-age=0, private, must-revalidate |
X-Request-Id | beddaba9-56f6-4ac4-9976-a34305ec84ba |
X-Runtime | 0.021708 |
Transfer-Encoding | chunked |
Via | 1.1 vegur |