Server | Apache |
X-Drupal-Cache | MISS |
Cache-Control | public, max-age=21600 |
Content-Security-Policy-Report-Only | default-src 'self' statique.sifast.fr; script-src 'self' 'unsafe-inline' 'unsafe-eval' statique.sifast.fr *.google-analytics.com *.google.com *.gstatic.com *.googleapis.com https://www.google.com data: *.sharethis.com; style-src 'self' 'unsafe-inline' statique.sifast.fr *.googleapis.com *.google.com *.sharethis.com; img-src 'self' statique.sifast.fr *.google-analytics.com *.gstatic.com *.googleapis.com data: *.sifast.com *.doubleclick.net *.sharethis.com; frame-src 'self' statique.sifast.fr *.sharethis.com; font-src 'self' 'unsafe-inline' statique.sifast.fr *.googleapis.com *.gstatic.com; report-uri /admin/config/system/seckit/csp-report |
X-Content-Security-Policy-Report-Only | default-src 'self' statique.sifast.fr; script-src 'self' 'unsafe-inline' 'unsafe-eval' statique.sifast.fr *.google-analytics.com *.google.com *.gstatic.com *.googleapis.com https://www.google.com data: *.sharethis.com; style-src 'self' 'unsafe-inline' statique.sifast.fr *.googleapis.com *.google.com *.sharethis.com; img-src 'self' statique.sifast.fr *.google-analytics.com *.gstatic.com *.googleapis.com data: *.sifast.com *.doubleclick.net *.sharethis.com; frame-src 'self' statique.sifast.fr *.sharethis.com; font-src 'self' 'unsafe-inline' statique.sifast.fr *.googleapis.com *.gstatic.com; report-uri /admin/config/system/seckit/csp-report |
X-WebKit-CSP-Report-Only | default-src 'self' statique.sifast.fr; script-src 'self' 'unsafe-inline' 'unsafe-eval' statique.sifast.fr *.google-analytics.com *.google.com *.gstatic.com *.googleapis.com https://www.google.com data: *.sharethis.com; style-src 'self' 'unsafe-inline' statique.sifast.fr *.googleapis.com *.google.com *.sharethis.com; img-src 'self' statique.sifast.fr *.google-analytics.com *.gstatic.com *.googleapis.com data: *.sifast.com *.doubleclick.net *.sharethis.com; frame-src 'self' statique.sifast.fr *.sharethis.com; font-src 'self' 'unsafe-inline' statique.sifast.fr *.googleapis.com *.gstatic.com; report-uri /admin/config/system/seckit/csp-report |
X-XSS-Protection | 1; mode=block |
X-Content-Type-Options | nosniff |
X-Frame-Options | SameOrigin |
Content-Language | fr |
X-Generator | Drupal 7 (http://drupal.org) |
Last-Modified | Fri, 06 Nov 2015 21:58:52 GMT |
Content-Encoding | gzip |
Content-Type | text/html; charset=utf-8 |
Accept-Ranges | bytes |
X-Varnish | 1356951242 |
Age | 0 |
Via | 1.1 varnish |
Connection | keep-alive |
X-Varnish-Cache | MISS |
Vary | Accept-Encoding,User-Agent, Cookie |