Content-Type: text/html; charset=UTF-8
Content-Length: 28610
X-Permitted-Cross-Domain-Policies: master-only
Server: cloudflare-nginx
Set-Cookie: __cfduid=df509865520c806ba3f353e1312cc657a1510360832; expires=Sun, 11-Nov-18 00:40:32 GMT; path=/; domain=.flatsy.fr; HttpOnly
Set-Cookie: profile=Business; Max-Age=31536000; Expires=Sun, 11 Nov 2018 00:40:32 GMT; Path=/
Connection: keep-alive
HTTP/1.1 200 OK
Set-Cookie: flatsy_session=eyJhbGciOiJIUzI1NiJ9.eyJkYXRhIjp7ImNzcmZUb2tlbiI6IjRlNDAxMmMyY2UwNTU2NzViODczYzFmMDE2Yzk5Yzk2MmFkZGFmZWMtMTUxMDM2MDgzMjE2Ni1jMDNjZTA3ZTE3MDhiZmQzNTI5NDhlYzIifSwibmJmIjoxNTEwMzYwODMyLCJpYXQiOjE1MTAzNjA4MzJ9.7vueDPKiijgkmmkeb9IQ_P1Cfvk3vosM-CntxrG5ycI; SameSite=Lax; Path=/; HTTPOnly
Date: Sat, 11 Nov 2017 00:40:32 GMT
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self' blob: 'unsafe-inline' 'unsafe-eval' data: http://assets.axessia.net http://cdn.filestackcontent.com https://cdn.filestackcontent.com http://*.filestackapi.com https://*.filestackapi.com http://*.immotalk.com https://*.gstatic.com https://*.mailchimp.com https://*.crisp.chat wss://*.crisp.chat https://www.google.fr https://tagmanager.google.com http://tagmanager.google.com http://www.googletagmanager.com https://www.googletagmanager.com https://connect.facebook.net https://www.facebook.com https://www.youtube.com/ https://*.ytimg.com http://www.youtube.com/ https://code.jquery.com/ui/1.11.4/jquery-ui.js http://code.jquery.com/ https://*.stripe.com https://s3-eu-west-1.amazonaws.com https://stats.g.doubleclick.net https://cbks0.googleapis.com https://cbks1.googleapis.com https://csi.gstatic.com https://www.google.com https://mts0.googleapis.com https://mts1.googleapis.com https://mts1.google.com https://mts0.google.com http://www.flatsy.fr https://www.flatsy.fr https://maps.gstatic.com http://maps.gstatic.com https://maps.googleapis.com http://maps.googleapis.com http://www.google-analytics.com https://www.google-analytics.com https://fonts.googleapis.com http://fonts.googleapis.com http://fonts.gstatic.com/ https://fonts.gstatic.com/ https://*.amazonaws.com http://*.ubiflow.net https://*.ubiflow.net https://cdn.polyfill.io
X-Frame-Options: DENY
Vary: Origin
CF-RAY: 3bbd33601a0d237e-FRA
X-Content-Type-Options: nosniff
Referrer-Policy: origin-when-cross-origin, strict-origin-when-cross-origin