Server | nginx |
Content-Type | text/html; charset=utf-8 |
Transfer-Encoding | chunked |
Connection | keep-alive |
X-Frame-Options | SAMEORIGIN |
X-XSS-Protection | 1; mode=block |
X-Content-Type-Options | nosniff |
Content-Security-Policy-Report-Only | default-src 'none'; connect-src 'self' https: wss://*.zopim.com; font-src data: https:; frame-src https://js.stripe.com https://m.stripe.network https://www.google.com https://www.youtube.com https://googleads.g.doubleclick.net https://bid.g.doubleclick.net; img-src https:; script-src 'unsafe-inline' 'unsafe-eval' https:; style-src 'unsafe-inline' https://d3tw2v68rmxuj7.cloudfront.net https://fonts.googleapis.com; report-uri /csp |
ETag | W/"7f00518c9b87e8b7d318af43f821b2e9" |
Cache-Control | max-age=0, private, must-revalidate |
X-Request-Id | 05c2ed22-059c-45b8-ace7-93a0f98d7b32 |
X-Runtime | 0.069284 |
Strict-Transport-Security | max-age=15552000 |
Content-Encoding | gzip |