Server | Cowboy |
Connection | keep-alive |
X-Frame-Options | SAMEORIGIN |
X-Xss-Protection | 1; mode=block |
X-Content-Type-Options | nosniff |
Content-Security-Policy | font-src * data:; script-src 'self' 'unsafe-inline' 'unsafe-eval' data: d2wy8f7a9ursnm.cloudfront.net d1v07ryl61sw60.cloudfront.net *.zopim.com cdn.mouseflow.com www.google-analytics.com ajax.googleapis.com s3.amazonaws.com/assets.heroku.com/boomerang/boomerang.js js-agent.newrelic.com bam.nr-data.net checkout.stripe.com; style-src 'self' 'unsafe-inline' fonts.googleapis.com netdna.bootstrapcdn.com d1l4caeyiolul.cloudfront.net d1v07ryl61sw60.cloudfront.net s3.amazonaws.com/assets.heroku.com/boomerang/boomerang.css checkout.stripe.com; report-uri /csp/report |
Content-Type | text/html; charset=utf-8 |
Etag | W/"40ebcaa88877342a549baf77a452ff05" |
Cache-Control | max-age=0, private, must-revalidate |
X-Request-Id | 8f74cb4e-e8e6-415d-8e09-89706501acfc |
X-Runtime | 0.064225 |
Transfer-Encoding | chunked |
Via | 1.1 vegur |