Server | Apache |
Content-Language | en |
X-Content-Security-Policy | default-src 'self'; script-src ajax.googleapis.com secure.pay1.de maxcdn.bootstrapcdn.com ssl.google-analytics.com 'self' 'unsafe-inline'; style-src fonts.googleapis.com maxcdn.bootstrapcdn.com 'self' 'unsafe-inline'; img-src ssl.google-analytics.com data: 'self'; frame-src secure.pay1.de; font-src fonts.gstatic.com fonts.googleapis.com maxcdn.bootstrapcdn.com 'self' |
Content-Security-Policy | default-src 'self'; script-src ajax.googleapis.com secure.pay1.de maxcdn.bootstrapcdn.com ssl.google-analytics.com 'self' 'unsafe-inline'; style-src fonts.googleapis.com maxcdn.bootstrapcdn.com 'self' 'unsafe-inline'; img-src ssl.google-analytics.com data: 'self'; frame-src secure.pay1.de; font-src fonts.gstatic.com fonts.googleapis.com maxcdn.bootstrapcdn.com 'self' |
Upgrade | h2 |
Connection | Upgrade, Keep-Alive |
Vary | Accept-Encoding |
Content-Encoding | gzip |
Cache-Control | max-age=0 |
Expires | Fri, 02 Mar 2018 23:34:06 GMT |
Keep-Alive | timeout=15, max=100 |
Content-Type | text/html; charset=utf-8 |