access-control-allow-method: OPTIONS
X-XSS-Protection: 0
Access-Control-Expose-Headers: X-FB-Debug, X-Loader-Length
Strict-Transport-Security: max-age=15552000; preload
Vary: Origin
Content-Type: text/html; charset=UTF-8
Date: Thu, 05 Oct 2017 00:50:17 GMT
HTTP/1.1 200 OK
X-FB-Debug: G2VbJkiJEInSqRIAFGXQ9K/Lj+Zgrlz16rGzcWH11eBHjq3dWaQf35gGaEoGChsghxCFDJGNtwLIS/oE5UuxqQ==
Access-Control-Allow-Origin: https://www.facebook.com
Connection: keep-alive
content-security-policy: default-src * data: blob:;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.virtualearth.net *.google.com 127.0.0.1:* *.spotilocal.com:* 'unsafe-inline' 'unsafe-eval' fbstatic-a.akamaihd.net fbcdn-static-b-a.akamaihd.net *.atlassolutions.com blob: data: 'self';style-src data: blob: 'unsafe-inline' *;connect-src *.facebook.com *.fbcdn.net *.facebook.net *.spotilocal.com:* *.akamaihd.net wss://*.facebook.com:* https://fb.scanandcleanlocal.com:* *.atlassolutions.com attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' chrome-extension://boadgeojelhgndaghljhdicfkmllpafd chrome-extension://dliochdbjfkdbacpmhlcpmleaejidimm;
Pragma: no-cache
X-Frame-Options: DENY
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Vary: Accept-Encoding
Access-Control-Allow-Credentials: true
Cache-Control: private, no-cache, no-store, must-revalidate
public-key-pins-report-only: max-age=600; pin-sha256="WoiWRyIOVNa9ihaBciRSC7XHjliYS9VwUGOIud4PB18="; pin-sha256="k2v657xBsOVe1PQRwOsHsw3bsGT2VzIqz5K+59sNQws="; pin-sha256="gMxWOrX4PMQesK9qFNbYBxjBfjUvlkn/vN1n+L9lE5E="; pin-sha256="q4PO2G2cbkZhZ82+JgmRUyGMoAeozA+BSXVXQWB8XWQ="; report-uri="http://reports.fb.com/hpkp/"
X-Content-Type-Options: nosniff
Transfer-Encoding: chunked