Server | Apache |
Access-Control-Allow-Origin | https://www.german-butchery.com.au |
Access-Control-Allow-Methods | POST, GET, OPTIONS |
X-Frame-Options | SAMEORIGIN |
X-Xss-Protection | 1; mode=block |
X-Content-Type-Options | nosniff |
Strict-Transport-Security | max-age=2592000; includeSubDomains; |
Expires | Fri, 23 Feb 2018 00:15:52 +0000 |
Content-Security-Policy | default-src 'self';script-src 'self' 'nonce-46fea61d4a5a43caec258eaf121783b6' 'unsafe-inline' 'strict-dynamic' https: http:;connect-src 'self' https://analytics-gbprod.lucas.net.au ;object-src 'self';img-src 'self' data: https://badges.instagram.com https://notify.bugsnag.com https://maps.google.com https://*.gstatic.com https://*.ggpht.com https://*.facebook.com https://*.googleapis.com https://instagramstatic-a.akamaihd.net https://analytics-gbprod.lucas.net.au https://static-a.german-butchery.com.au https://static-b.german-butchery.com.au;style-src 'self' 'unsafe-inline' https://static-a.german-butchery.com.au https://static-b.german-butchery.com.au https://*.googleapis.com;frame-src 'self' https://staticxx.facebook.com https://www.facebook.com https://web.facebook.com https://www.google.com;child-src 'self' https://staticxx.facebook.com https://www.facebook.com https://web.facebook.com https://www.google.com;font-src 'self' data: https://fonts.gstatic.com https://static-a.german-butchery.com.au https://static-b.german-butchery.com.au;media-src https://ssl.gstatic.com;frame-ancestors 'self' https://analytics-gbprod.lucas.net.au;base-uri 'self';report-uri /cspreport; |
Vary | Accept-Encoding,Origin |
Content-Encoding | gzip |
Content-Type | text/html; charset=UTF-8 |
Cache-control | max-age=180, private |