Server | Apache |
X-Powered-By | PHP/5.6.30 |
Cache-Control | max-age=31536000 |
Expires | Sat, 16 Feb 2019 07:44:21 GMT |
Vary | Accept-Encoding,User-Agent |
Content-Encoding | gzip |
X-UA-Compatible | IE=edge,chrome=1 |
Content-Security-Policy-Report-Only | default-src 'self' http: https: *.typekit.net *.vimeo.com *.google-analytics.com *.membogo.com js-agent.newrelic.com bam.nr-data.net fonts.googleapis.com *.hewitt.ca www.hewitt.ca *.hpjcc.com *.googleapis.com *.fonts.gstatic.com *.addthis.com *.addthisedge.com *.agencehpj.com 'unsafe-eval' 'self' 'unsafe-inline' data: ; report-uri https://bb8.agencehpj.com/csp |
Content-Type-Options | nosniff |
Content-Type | application/json;charset=utf-8 |
Access-Control-Allow-Origin | * |
X-Frame-Options | SAMEORIGIN |
X-Content-Type-Options | nosniff |
X-XSS-Protection | 1; mode=block; |