Content-Type | text/html; charset=UTF-8 |
Content-Encoding | gzip |
Expires | Sat, 24 Feb 2018 23:26:33 GMT |
Last-Modified | Sat, 24 Feb 2018 23:26:33 GMT |
Server | Microsoft-IIS/7.5 |
X-Content-Type-Options | nosniff |
X-XSS-Protection | 1; mode=block |
Content-Security-Policy | reflected-xss block; base-uri 'self'; default-src 'self' api.usersnap.com; img-src 'self' https://www.gravatar.com data: blob: d3mvnvhjmkxpjz.cloudfront.net cdn.usersnap.com www.gravatar.com; script-src 'self' 'unsafe-inline' www.google-analytics.com ajax.googleapis.com api.usersnap.com cdn.usersnap.com d3mvnvhjmkxpjz.cloudfront.net; style-src 'self' 'unsafe-inline' fast.fonts.net d3mvnvhjmkxpjz.cloudfront.net; font-src 'self' fast.fonts.net; frame-src 'self' 'unsafe-inline' www.xylect.com www.xyleminc.com cadcenter.lowara.com data: api.usersnap.com d3mvnvhjmkxpjz.cloudfront.net ; child-src 'self' 'unsafe-inline' www.xylect.com www.xyleminc.com cadcenter.lowara.com data: api.usersnap.com d3mvnvhjmkxpjz.cloudfront.net ; media-src 'self'; plugin-types application/pdf application/x-shockwave-flash ; |
X-Content-Security-Policy | reflected-xss block; base-uri 'self'; default-src 'self' api.usersnap.com; img-src 'self' https://www.gravatar.com data: blob: d3mvnvhjmkxpjz.cloudfront.net cdn.usersnap.com www.gravatar.com; script-src 'self' 'unsafe-inline' www.google-analytics.com ajax.googleapis.com api.usersnap.com cdn.usersnap.com d3mvnvhjmkxpjz.cloudfront.net; style-src 'self' 'unsafe-inline' fast.fonts.net d3mvnvhjmkxpjz.cloudfront.net; font-src 'self' fast.fonts.net; frame-src 'self' 'unsafe-inline' www.xylect.com www.xyleminc.com cadcenter.lowara.com data: api.usersnap.com d3mvnvhjmkxpjz.cloudfront.net ; child-src 'self' 'unsafe-inline' www.xylect.com www.xyleminc.com cadcenter.lowara.com data: api.usersnap.com d3mvnvhjmkxpjz.cloudfront.net ; media-src 'self'; plugin-types application/pdf application/x-shockwave-flash ; |
X-UA-Compatible | IE=Edge |
X-Powered-By | ASP.NET |
Connection | close |