| Content-Type | text/html; charset=utf-8 |
| Transfer-Encoding | chunked |
| Connection | keep-alive |
| x-xss-protection | 1; mode=block |
| Content-Security-Policy | script-src 'self' 'unsafe-inline' 'unsafe-eval' ajax.cloudflare.com cdnjs.cloudflare.com www.googletagmanager.com connect.facebook.com connect.facebook.net code.jquery.com *.facebook.com *.google.com maps.googleapis.com ajax.googleapis.com www.google-analytics.com www.googleadservices.com googleads.g.doubleclick.net www.smartsuppchat.com rec.getsmartlook.com *.cdn77.org; default-src 'self' 'unsafe-inline'; img-src 'self' 'unsafe-inline' 'unsafe-eval' data: connect.facebook.net cm.g.doubleclick.net ssl.google-analytics.com graph.facebook.com www.google.com maps.google.com www.google.pl www.google-analytics.com placehold.it placeholdit.imgix.net *.g.doubleclick.net *.googleapis.com *.facebook.com *.gstatic.com *.cdn77.org; style-src 'self' 'unsafe-inline' cdnjs.cloudflare.com fonts.googleapis.com maxcdn.bootstrapcdn.com *.cdn77.org; frame-src 'self' *.google.com *.facebook.com; connect-src 'self' 'unsafe-inline' localhost:8000 maps.googleapis.com *.smartsupp.com *.getsmartlook.com ws:; font-src 'self' 'unsafe-inline' data: fonts.gstatic.com maxcdn.bootstrapcdn.com *.cdn77.org |
| Content-Language | pl |
| strict-transport-security | max-age=31536000; includeSubDomains |
| Vary | Accept-Language,Accept-Encoding |
| X-Frame-Options | SAMEORIGIN |
| x-content-type-options | nosniff |
| Server | cloudflare-nginx |
| CF-RAY | 2e8ede187d593f89-YUL |
| Content-Encoding | gzip |