Server | nginx |
Content-Type | text/html; charset=utf-8 |
P3P | CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM" |
Expires | Mon, 1 Jan 2001 00:00:00 GMT |
Cache-Control | no-store, no-cache, must-revalidate, post-check=0, pre-check=0 |
Pragma | no-cache |
Last-Modified | Tue, 13 Feb 2018 01:44:36 GMT |
X-Powered-By | PHP/5.6.33, PleskLin |
Content-Security-Policy-Report-Only | default-src 'self' 'unsafe-eval' 'unsafe-inline' data: http: https: *.google.com *.google.ca m.addthisedge.com graph.facebook.com *.addthis.com www.google-analytics.com js-agent.newrelic.com bam.nr-data.net widgets.pinterest.com fonts.googleapis.com s1.hpjcc.com *.typekit.net ajax.googleapis.com lamer.ca *.hpjtest.com fonts.gstatic.com *.doubleclick.net; report-uri https://bb8.agencehpj.com/csp |
Content-Type-Options | nosniff |
Access-Control-Allow-Credentials | true |
Access-Control-Allow-Origin | * |
Vary | User-Agent,Accept-Encoding |
X-XSS-Protection | 1; mode=block |
X-Content-Type-Options | nosniff |
X-Frame-Options | SAMEORIGIN |
X-UA-Compatible | IE=edge |
Content-Encoding | gzip |