Server | nginx/1.10.3 (Ubuntu) |
Content-Type | text/html; charset=utf-8 |
Transfer-Encoding | chunked |
Connection | keep-alive |
set-cookie | _make_sense_key=SFMyNTY.g3QAAAABbQAAAAtfY3NyZl90b2tlbm0AAAAYZ210VmNGUTNWclZiVXlBNnRCSU5RUT09.C2BPRelWV-XUcbACxWQI4eHjBtWZjNlCCqzZkrnGsj8; path=/; HttpOnly |
cache-control | max-age=0, private, must-revalidate |
x-request-id | okkhg3cfavahegpgvdn9tkv4tu0g88qo |
x-frame-options | SAMEORIGIN |
x-xss-protection | 1; mode=block |
Strict-Transport-Security | max-age=31536000; includeSubDomains |
Referrer-Policy | origin |
X-Content-Type-Options | nosniff, nosniff |
Content-Security-Policy | default-src 'self' https://*.cloudfront.net https://fonts.googleapis.com https://ajax.googleapis.com https://www.google-analytics.com https://code.jquery.com; script-src 'self' 'unsafe-inline' https://*.cloudfront.net https://use.typekit.net https://cdn.mxpnl.com https://static.hotjar.com https://www.google-analytics.com https://www.googletagmanager.com/ data:; style-src 'self' 'unsafe-inline' https://*.cloudfront.net; img-src 'self' https://*.cloudfront.net https://p.typekit.net; connect-src 'self'; font-src 'self' https://use.typekit.net; object-src 'none'; media-src 'self'; form-action 'self'; frame-src https://player.vimeo.com; frame-ancestors 'self'; |
Content-Encoding | gzip |