Content-Type | text/html; charset=utf-8 |
Transfer-Encoding | chunked |
Connection | keep-alive |
Access-Control-Allow-Origin | * |
Content-Encoding | gzip |
Content-Security-Policy | default-src 'self'; font-src 'self' 'unsafe-inline' maxcdn.bootstrapcdn.com d2jplf7y2byxlz.cloudfront.net localhost:3002; frame-src 'self' *.doubleclick.net *.facebook.com *.youtube.com; img-src *; object-src; script-src 'self' 'unsafe-eval' 'sha256-p8iXbXLrl++wsN0lGOqlxGA9iUOWp1Dh0OIxs2jxNps=' 'sha256-p8iXbXLrl++wsN0lGOqlxGA9iUOWp1Dh0OIxs2jxNps=' 'sha256-5YRYu8UEAUTYRjNmxHcJADzvCngrlek7sKkQcXnYu7M=' www.googletagmanager.com www.google-analytics.com connect.facebook.net ajax.googleapis.com chrome: localhost:3002; style-src 'self' 'unsafe-inline' maxcdn.bootstrapcdn.com |
ETag | W/"1280-utP4zVGvu33vdswJqHAofw" |
Server | nginx/1.8.1 |
X-Content-Security-Policy | default-src 'self'; font-src 'self' 'unsafe-inline' maxcdn.bootstrapcdn.com d2jplf7y2byxlz.cloudfront.net localhost:3002; frame-src 'self' *.doubleclick.net *.facebook.com *.youtube.com; img-src *; object-src; script-src 'self' 'unsafe-eval' 'sha256-p8iXbXLrl++wsN0lGOqlxGA9iUOWp1Dh0OIxs2jxNps=' 'sha256-p8iXbXLrl++wsN0lGOqlxGA9iUOWp1Dh0OIxs2jxNps=' 'sha256-5YRYu8UEAUTYRjNmxHcJADzvCngrlek7sKkQcXnYu7M=' www.googletagmanager.com www.google-analytics.com connect.facebook.net ajax.googleapis.com chrome: localhost:3002; style-src 'self' 'unsafe-inline' maxcdn.bootstrapcdn.com |
X-Content-Type-Options | nosniff |
X-Frame-Options | SAMEORIGIN |
X-WebKit-CSP | default-src 'self'; font-src 'self' 'unsafe-inline' maxcdn.bootstrapcdn.com d2jplf7y2byxlz.cloudfront.net localhost:3002; frame-src 'self' *.doubleclick.net *.facebook.com *.youtube.com; img-src *; object-src; script-src 'self' 'unsafe-eval' 'sha256-p8iXbXLrl++wsN0lGOqlxGA9iUOWp1Dh0OIxs2jxNps=' 'sha256-p8iXbXLrl++wsN0lGOqlxGA9iUOWp1Dh0OIxs2jxNps=' 'sha256-5YRYu8UEAUTYRjNmxHcJADzvCngrlek7sKkQcXnYu7M=' www.googletagmanager.com www.google-analytics.com connect.facebook.net ajax.googleapis.com chrome: localhost:3002; style-src 'self' 'unsafe-inline' maxcdn.bootstrapcdn.com |
X-XSS-Protection | 1; mode=block |
Vary | Accept-Encoding |
X-Cache | Miss from cloudfront |
Via | 1.1 14f603c905dd45ba5c6093eee54dbdc4.cloudfront.net (CloudFront) |
X-Amz-Cf-Id | UaZWrWmhf_kq96Fwg267DxqGyQjUrVeYXDqdpbuYvXHD1ikM_uEAmg== |