Server | nginx |
Content-Type | text/html; charset=utf-8 |
Transfer-Encoding | chunked |
Connection | keep-alive |
Pragma | no-cache |
Cache-Control | no-cache, no-store, must-revalidate, private, max-age=0 |
Expires | Thu, 01 Jan 1970 00:00:00 GMT |
Content-Security-Policy | script-src 'self' 'unsafe-inline' 'unsafe-eval' https://cdn.mxpnl.com https://*.google-analytics.com https://*.optimizely.com https://*.bootstrapcdn.com https://*.jquery.com https://*.sharethis.com https://*.haikudeck.com https://*.newrelic.com https://connect.facebook.net https://www.googleadservices.com https://assets.pinterest.com https://*.nr-data.net https://checkout.stripe.com https://js.stripe.com/v2/ https://platform.twitter.com https://*.surveymonkey.com https://*.googleapis.com; object-src 'self'; img-src * data:; frame-src 'self' https://*.google.com https://twitter.com https://facebook.com https://linkedin.com https://www.haikudeck.com https://*.vimeo.com https://*.parse.com https://*.sharethis.com https://*.filepicker.io https://googleads.g.doubleclick.net https://checkout.stripe.com https://js.stripe.com/v2/ https://twitter.com https://facebook.com https://linkedin.com https://platform.twitter.com https://*.facebook.com https://*.surveymonkey.com; font-src 'self' https://*; connect-src 'self' https://*.haikudeck.com:* https://*.mixpanel.com https://*.optimizely.com https://*.nr-data.net wss://*.haikudeck.com:*; style-src 'self' 'unsafe-inline' https://*.bootstrapcdn.com https://*.sharethis.com https://checkout.stripe.com https://js.stripe.com/v2/ ; |
Strict-Transport-Security | max-age=31536000; includeSubDomains |
X-Content-Type-Options | nosniff |
X-FRAME-OPTIONS | sameorigin |
X-XSS-Protection | 1; mode=block |
set-cookie | session=s%3A91c9cdd28ada6f3d1eeefec4d0d057b01b6eeeb9.DAcj72mRxKZih%2Fo3VXh2olLkAA0JspCidC0ID3OLsIA; Path=/; Expires=Sat, 05 Dec 2015 07:44:27 GMT; HttpOnly; Secure |
X-Response-Time | 40ms |
Content-Encoding | gzip |