Server | nginx/1.13.3 |
Content-Type | text/html; charset=utf-8 |
Last-Modified | Wed, 24 Jan 2018 20:12:36 GMT |
Transfer-Encoding | chunked |
Connection | keep-alive |
Vary | Accept-Encoding |
ETag | W/"5a68e8b4-a45d" |
Content-Security-Policy | default-src 'none' ; base-uri 'none' ; script-src 'self' 'sha256-rAmSUQM9ecw9NNQV3JUW/lFtsJCAanxtKwEpE96fQ2E=' https://www.googletagmanager.com https://tagmanager.google.com https://www.google-analytics.com https://maps.googleapis.com; style-src 'self' 'unsafe-inline' https://tagmanager.google.com https://fonts.googleapis.com; img-src 'self' data: https://harperhousecom.s3.amazonaws.com https://www.google-analytics.com https://www.google.com/ads https://stats.g.doubleclick.net https://*.gstatic.com https://maps.googleapis.com; font-src https://fonts.gstatic.com; connect-src 'none' ; media-src https://harperhousecom.s3.amazonaws.com 'self' ; object-src 'none' ; child-src 'none' ; frame-src 'none' ; worker-src 'none' ; frame-ancestors 'none' ; form-action 'self' ; upgrade-insecure-requests; block-all-mixed-content |
X-Content-Type-Options | nosniff |
Strict-Transport-Security | max-age=63072000; preload |
Referrer-Policy | strict-origin-when-cross-origin |
Content-Encoding | gzip |