ETag | "eeedd5ec15878c38276cbf17d42fd0e36438065f" |
Vary | Accept-Encoding |
Accept-Ranges | bytes |
Cache-Control | public, max-age=3600 |
Last-Modified | Tue, 06 Dec 2016 15:27:30 GMT |
X-Frame-Options | DENY |
Content-Encoding | gzip |
X-XSS-Protection | 1; mode=block |
X-Content-Type-Options | nosniff |
Content-Security-Policy | default-src 'self'; style-src 'self' 'unsafe-inline' https://code.cdn.mozilla.net https://fonts.googleapis.com; font-src 'self' data: https://code.cdn.mozilla.net https://fonts.gstatic.com; img-src * data: blob:; script-src 'self' https://www.google-analytics.com https://www.googleadservices.com https://*.inspectlet.com https://widgets.getsitecontrol.com https://gscst-84a.kxcdn.com https://connect.facebook.net; connect-src 'self' https://beacon.gutefrage.net https://*.inspectlet.com wss://*.inspectlet.com https://app.getsitecontrol.com; child-src 'self' https://heidelpay.hpcgw.net https://test-heidelpay.hpcgw.net |
X-Permitted-Cross-Domain-Policies | master-only |
Content-Type | text/html; charset=utf-8 |