Server | nginx |
Content-Type | text/html; charset=UTF-8 |
Transfer-Encoding | chunked |
Connection | keep-alive |
Content-Security-Policy | default-src 'unsafe-inline' 'unsafe-eval' 'self' data: *.google.co.jp *.ckeditor.com *.redcatreading.com code.jquery.com secure.gravatar.com *.ytimg.com *.stripe.com sumo.com *.sumo.com *.sumome.com *.disqus.com *.doubleclick.net *.addthis.com d2sid734d4oryb.cloudfront.net *.googleapis.com *.google.com *.maps.google.com https://maps.googleapis.com https://maps.gstatic.com *.gstatic.com *.googletagmanager.com *.facebook.com *.facebook.net *.fbcdn.net *.google-analytics.com *.pinterest.com *.twitter.com *.youtube.com; object-src 'self'; |
X-Content-Security-Policy | default-src 'unsafe-inline' 'unsafe-eval' 'self' data: *.google.co.jp *.ckeditor.com *.redcatreading.com code.jquery.com secure.gravatar.com *.ytimg.com *.stripe.com sumo.com *.sumo.com *.sumome.com *.disqus.com *.doubleclick.net *.addthis.com d2sid734d4oryb.cloudfront.net *.googleapis.com *.google.com *.maps.google.com https://maps.googleapis.com https://maps.gstatic.com *.gstatic.com *.googletagmanager.com *.facebook.com *.facebook.net *.fbcdn.net *.google-analytics.com *.pinterest.com *.twitter.com *.youtube.com; object-src 'self'; |
X-WebKit-CSP | default-src 'unsafe-inline' 'unsafe-eval' 'self' data: *.google.co.jp *.ckeditor.com *.redcatreading.com code.jquery.com secure.gravatar.com *.ytimg.com *.stripe.com sumo.com *.sumo.com *.sumome.com *.disqus.com *.doubleclick.net *.addthis.com d2sid734d4oryb.cloudfront.net *.googleapis.com *.google.com *.maps.google.com https://maps.googleapis.com https://maps.gstatic.com *.gstatic.com *.googletagmanager.com *.facebook.com *.facebook.net *.fbcdn.net *.google-analytics.com *.pinterest.com *.twitter.com *.youtube.com; object-src 'self'; |
Content-Encoding | gzip |