Cache-Control | no-cache |
Pragma | no-cache |
Content-Type | text/html; charset=utf-8 |
Expires | -1 |
Server | Microsoft-IIS/8.0 |
Content-Security-Policy | default-src 'self' www.google-analytics.com https://www.google.com https://docs.google.com https://calendar.google.com https://accounts.google.com https://syndication.twitter.com;style-src 'self' 'unsafe-inline' fonts.googleapis.com platform.twitter.com;script-src 'self' 'unsafe-inline' 'unsafe-eval' https://widget.surveymonkey.com https://ajax.googleapis.com *.twimg.com www.google-analytics.com platform.twitter.com https://syndication.twitter.com;frame-src 'self' https://calendar.google.com https://surveymonkey.com https://www.surveymonkey.com;font-src 'self' fonts.gstatic.com;img-src 'self' data: about: www.google-analytics.com *.surveymonkey.com *.twitter.com *.twimg.com;report-uri https://services.texmed.org/45/Tma.CspReportApi/api/csp; |
X-Content-Security-Policy | default-src 'self' www.google-analytics.com https://www.google.com https://docs.google.com https://calendar.google.com https://accounts.google.com https://syndication.twitter.com;style-src 'self' 'unsafe-inline' fonts.googleapis.com platform.twitter.com;script-src 'self' 'unsafe-inline' 'unsafe-eval' https://widget.surveymonkey.com https://ajax.googleapis.com *.twimg.com www.google-analytics.com platform.twitter.com;frame-src 'self' https://calendar.google.com https://surveymonkey.com https://www.surveymonkey.com;font-src 'self' fonts.gstatic.com https://syndication.twitter.com;img-src 'self' data: about: www.google-analytics.com *.surveymonkey.com *.twitter.com *.twimg.com;report-uri https://services.texmed.org/45/Tma.CspReportApi/api/csp; |
X-Frame-Options | SAMEORIGIN |
X-XSS-Protection | 1; mode=block |
X-Content-Type-Options | nosniff |
Strict-Transport-Security | max-age=31536000 |
Content-Length | 61985 |