content-type | text/html; charset=UTF-8 |
content-length | 16690 |
date | Sat, 28 Sep 2024 02:19:17 GMT |
server | Apache |
vary | User-Agent,Accept-Encoding |
last-modified | Thu, 12 Sep 2024 08:50:31 GMT |
accept-ranges | bytes |
content-encoding | gzip |
access-control-allow-methods | GET,POST |
access-control-allow-headers | Content-Type, Authorization |
content-security-policy | upgrade-insecure-requests; script-src 'self' 'unsafe-inline' https://www.hescuro-bad-brueckenau.de https://www.googletagmanager.com https://www.google-analytics.com; object-src 'none'; base-uri 'none'; |
cross-origin-embedder-policy | unsafe-none; report-to='default' |
cross-origin-embedder-policy-report-only | unsafe-none; report-to='default' |
cross-origin-opener-policy | unsafe-none |
cross-origin-opener-policy-report-only | unsafe-none; report-to='default' |
cross-origin-resource-policy | cross-origin |
permissions-policy | accelerometer=(), autoplay=(), camera=(), cross-origin-isolated=(), display-capture=(self), encrypted-media=(), fullscreen=*, geolocation=(self), gyroscope=(), keyboard-map=(), magnetometer=(), microphone=(), midi=(), payment=*, picture-in-picture=(), publickey-credentials-get=(), screen-wake-lock=(), sync-xhr=(), usb=(), xr-spatial-tracking=(), gamepad=(), serial=() |
referrer-policy | strict-origin-when-cross-origin |
strict-transport-security | max-age=63072000 |
x-content-security-policy | default-src 'self'; img-src *; media-src * data:; |
x-content-type-options | nosniff |
x-frame-options | SAMEORIGIN |
x-permitted-cross-domain-policies | none |
cache-control | max-age=0, no-cache, no-store, must-revalidate |
pragma | no-cache |
expires | Mon, 29 Oct 1923 20:30:00 GMT |
statuscode | 200 |
http_version | HTTP/2 |
(Deseable)