server | nginx |
date | Sun, 23 Feb 2025 16:21:14 GMT |
content-type | text/html; charset=UTF-8 |
vary | Accept-Encoding |
last-modified | Fri, 21 Feb 2025 15:10:03 GMT |
cache-control | max-age=0 |
expires | Fri, 21 Feb 2025 15:10:01 GMT |
access-control-allow-methods | GET,POST |
access-control-allow-headers | Content-Type, Authorization |
content-security-policy | upgrade-insecure-requests; object-src 'self'; base-uri 'self'; frame-src 'self' https://www.facebook.com https://connect.facebook.net; img-src 'self' data: *; media-src 'self' data: *; script-src 'self' data: * 'unsafe-inline' 'unsafe-eval' https://www.google.com https://www.google-analytics.com https://www.facebook.com https://connect.facebook.net https://www.googletagmanager.com; |
cross-origin-embedder-policy | unsafe-none; report-to='default' |
cross-origin-embedder-policy-report-only | unsafe-none; report-to='default' |
cross-origin-opener-policy | unsafe-none |
cross-origin-opener-policy-report-only | unsafe-none; report-to='default' |
cross-origin-resource-policy | cross-origin |
permissions-policy | accelerometer=(), autoplay=(), camera=(), cross-origin-isolated=(), display-capture=(self), encrypted-media=(), fullscreen=*, geolocation=(self), gyroscope=(), keyboard-map=(), magnetometer=(), microphone=(), midi=(), payment=*, picture-in-picture=(), publickey-credentials-get=(), screen-wake-lock=(), sync-xhr=(), usb=(), xr-spatial-tracking=(), gamepad=(), serial=() |
referrer-policy | strict-origin-when-cross-origin |
x-content-security-policy | default-src 'self'; img-src *; media-src * data:; |
x-permitted-cross-domain-policies | none |
age | 177071 |
strict-transport-security | max-age=63072000; includeSubDomains; preload |
x-varnish-cache | HIT |
x-cacheable | YES |
x-content-type-options | nosniff |
x-frame-options | DENY |
x-xss-protection | 1; mode=block |
content-encoding | gzip |
statuscode | 200 |
http_version | HTTP/2 |
(Deseable)