| Cache-Control | no-cache, private,proxy-revalidate,proxy-revalidate |
| X-Frame-Options | SAMEORIGIN |
| Content-Type | text/html; charset=UTF-8 |
| Transfer-Encoding | chunked |
| Content-Encoding | gzip |
| Vary | Accept-Encoding |
| Accept-Ranges | bytes |
| X-Xss-Protection | 1; mode=block |
| Referrer-Policy | no-referrer-when-downgrade |
| Strict-Transport-Security | max-age=2592000 |
| X-Content-Type-Options | nosniff |
| Content-Security-Policy-Report-Only | default-src 'self'; style-src 'self' 'unsafe-inline' https://widget.raisenow.com/widgets/lema/ https://fonts.googleapis.com/; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://static.addtoany.com/ https://static.addtoany.com/menu/locale/de.js https://static.addtoany.com/menu/svg/ https://static.addtoany.com/menu/page.js https://www.googletagmanager.com/gtag/ https://analytics.widmersolutions.ch/piwik.js https://www.google-analytics.com/analytics.js https://widget.raisenow.com/widgets/lema/ https://widget.raisenow.com/widgets/ela/ blob:; font-src 'self' https://fonts.gstatic.com/; img-src 'self' blob: https://widget.raisenow.com/widgets/lema/ https://stats.g.doubleclick.net data: https://analytics.widmersolutions.ch/ https://www.google-analytics.com/ https://www.concrete5.org/files/; frame-src 'self' https://static.addtoany.com/ https://www.youtube.com https://player.vimeo.com; connect-src https://www.google-analytics.com https://stats.g.doubleclick.net report-uri https://frontiers.report-uri.com/r/d/csp/reportOnly; |
| Connection | close |
| Alt-Svc | quic=":443"; ma=2592000; v="35,37,38,39" |