Server | nginx |
Content-Type | text/html; charset=UTF-8 |
Transfer-Encoding | chunked |
Connection | keep-alive |
Keep-Alive | timeout=75 |
Vary | Accept-Encoding |
X-Powered-By | PHP/7.1.12 |
Cache-Control | no-cache, private |
Content-Security-Policy | report-uri https://sentry.io/api/191104/csp-report/?sentry_key=974b6d80e7054d018b8e303fef55a7dd;default-src 'self';font-src 'self' data: https://fonts.gstatic.com;script-src 'self' 'nonce-N7I6Vaoa7qElTbzqGQPE91aNHU2RNE5qPxq7e9kK' 'strict-dynamic' https://*.larsen.no https://cdnjs.cloudflare.com;style-src 'self' 'unsafe-inline' https://*.larsen.no https://cdnjs.cloudflare.com https://fonts.googleapis.com;img-src 'self' data: https://*.larsen.no https://cdnjs.cloudflare.com;child-src 'self' https://www.youtube.com https://www.google.com;frame-src 'self' https://www.youtube.com https://www.google.com;object-src 'none';base-uri 'none'; |
X-Frame-Options | SAMEORIGIN |
X-XSS-Protection | 1; mode=block |
X-Content-Type-Options | nosniff |
X-Permitted-Cross-Domain-Policies | master-only |
Strict-Transport-Security | max-age=15768000; |
Referrer-Policy | strict-origin-when-cross-origin |
Content-Encoding | gzip |