Cache-Control | private |
Transfer-Encoding | chunked |
Content-Type | text/html; charset=utf-8 |
Content-Encoding | gzip |
Expires | Wed, 13 Feb 2019 23:16:52 GMT |
Vary | Accept-Encoding |
content-security-policy | default-src *; style-src * 'unsafe-inline'; font-src * 'unsafe-inline'; script-src * 'unsafe-inline' 'unsafe-eval'; img-src * data: 'unsafe-inline'; connect-src * 'unsafe-inline'; frame-src * |
x-permitted-cross-domain-policies | master-only |
X-XSS-Protection | 1; mode=block |
Access-Control-Allow-Origin | * |
Strict-Transport-Security | max-age=18144000; includeSubDomains |
X-Content-Type-Options | nosniff |
X-Frame-Options | SAMEORIGIN, SAMEORIGIN |