Server | nginx/1.10.3 |
Content-Type | text/html; charset=utf-8 |
Transfer-Encoding | chunked |
Connection | keep-alive |
X-FRAME-OPTIONS | SAMEORIGIN |
X-XSS-Protection | 1; mode=block |
X-Content-Type-Options | nosniff |
X-Download-Options | noopen |
Strict-Transport-Security | max-age=15778476; includeSubDomains |
P3P | ABCDEF |
Content-Security-Policy | |
ETag | W/"1766-bqc76vCORjRrf14CrldsOQ" |
set-cookie | sessionId=s%3AfvcRidM_df4-yb0fVPf51jYAxJ5MIYbU.T3rjei%2FhMehyA%2FGS03OnE%2FHLP8brP%2BZ4ZO1Cin%2B%2FcnI; Path=/; Expires=Sat, 24 Feb 2018 08:41:44 GMT; HttpOnly |
Vary | Accept-Encoding |
Content-Encoding | gzip |
Cache-Control | public |
Access-Control-Allow-Origin | * |
Access-Control-Allow-Credentials | true |
Access-Control-Allow-Methods | GET, POST, OPTIONS |
Access-Control-Allow-Headers | DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type |