Content-Security-Policy | script-src 'strict-dynamic' 'nonce-EXB24MhmdJmlMlk' 'self' 'unsafe-inline' https:; default-src 'self' 'unsafe-inline' https: wss:; font-src *; style-src * 'unsafe-inline'; frame-ancestors 'none'; object-src 'none'; base-uri 'none' |
X-XSS-Protection | 1; mode=block |
X-Permitted-Cross-Domain-Policies | none |
X-Download-Options | noopen |
X-Frame-Options | sameorigin |
X-Content-Type-Options | nosniff |
Strict-Transport-Security | max-age=631138519; includeSubDomains |
Cache-Control | private, no-cache,no-store,private,must-revalidate,max-stale=0,post-check=0,pre-check=0 |
Pragma | no-cache |
Expires | Thu, 01 Jan 1970 04:00:00 AZT, Thu, 01 Jan 1970 00:00:00 GMT |
Content-Type | text/html;charset=UTF-8 |
Transfer-Encoding | chunked |