Content-Type | text/html; charset=utf-8 |
Transfer-Encoding | chunked |
Connection | keep-alive |
Server | Mastodon |
X-Frame-Options | DENY |
X-Content-Type-Options | nosniff |
X-XSS-Protection | 1; mode=block |
Vary | Accept-Encoding |
Content-Encoding | gzip |
ETag | W/"0d643a4359d038fc6aa7d7f54613c637" |
Cache-Control | max-age=0, private, must-revalidate |
X-Request-Id | 8c56253a-6eb7-4937-beef-5e990640f875 |
X-Runtime | 0.009852 |
Strict-Transport-Security | max-age=15768000; includeSubDomains; preload |
Public-Key-Pins | pin-sha256="o4lwdX2ZD2KzLKeJcVWtEJsjdUaPySsouUdEt7Q0VQs="; pin-sha256="CAsxUbj+yqoY2Hz1a10hzb9zINibmxnO22VHVNn9G+s="; pin-sha256="r68eEky9saNbaQ1sg8vC/4jxJ6nVXKZtqzhVqjUfDrg="; pin-sha256="lT79vxt5UucPJsOBtnT4dapOkTX6RAlDqRqDthGWTk4="; pin-sha256="IfGD+fYCFwJoMcSWRm4D2Vaan44DzWkcefOLP2D5PAc="; max-age=5184000; includeSubDomains; report-uri="https://mastodon.report-uri.io/r/default/hpkp/enforce" |
Referrer-Policy | no-referrer, strict-origin-when-cross-origin |
Content-Security-Policy | default-src 'self'; img-src 'self' data:; connect-src wss://mastodon.at 'self'; script-src 'self' 'unsafe-inline'; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; font-src data: 'self' https://fonts.gstatic.com; frame-ancestors 'self'; report-uri https://mastodon.report-uri.io/r/default/csp/enforce |
X-Cache-Status | MISS |