Server | nginx |
Content-Type | text/html; charset=utf-8 |
Transfer-Encoding | chunked |
Connection | keep-alive |
X-ShopId | 14326588 |
X-ShardId | 5 |
Content-Language | en |
Content-Security-Policy-Report-Only | default-src 'self' https:; connect-src 'self' https: wss:; font-src 'self' https: blob: data:; frame-src 'self' https: blob: data: shopify-pos:; img-src 'self' https: blob: data:; media-src 'self' https: blob: data:; object-src 'self' https: blob: data:; script-src 'self' https: 'unsafe-inline' 'unsafe-eval'; style-src 'self' https: 'unsafe-inline'; frame-ancestors www.shoplyla.com; report-uri /csp-report/025c4923-a743-40d6-b5bc-a9f4188c88cb?source%5Baction%5D=password&source%5Bcontroller%5D=storefront_section%2Fstorefront&source%5Bsection%5D=storefront; |
X-XSS-Protection | 1; mode=block; report=/xss-report/025c4923-a743-40d6-b5bc-a9f4188c88cb?source%5Baction%5D=password&source%5Bcontroller%5D=storefront_section%2Fstorefront&source%5Bsection%5D=storefront |
ETag | cacheable:5fcce7359bb8727f1a073f3174413fe3 |
X-Alternate-Cache-Key | cacheable:7fae803bb7d0dc92085e836010ed290f |
Content-Encoding | gzip |
X-Cache | miss |
P3P | CP="NOI DSP COR NID ADMa OPTa OUR NOR" |
X-Dc | ash,chi2 |
X-Download-Options | noopen |
X-Permitted-Cross-Domain-Policies | none |
X-Request-ID | 025c4923-a743-40d6-b5bc-a9f4188c88cb |
X-Content-Type-Options | nosniff, nosniff, nosniff |