Server: Apache/2.4
Content-Encoding: none
X-Content-Type-Options: nosniff
Transfer-Encoding: chunked
Set-Cookie: XSRF-TOKEN=eyJpdiI6InQyS2JUM1JxY1pRd3Y1c01cLzZzYnd3PT0iLCJ2YWx1ZSI6IlBWWHpKQzYycXZSdTA1VjM4XC9KODhyV29YMElrWFJTWEI3VGlBYzhtWG9ZZjV6TGl5N2xLYks2STkxc056QVB4NVNWSmVibTRuTHFCcHlxaDc2SDNPZz09IiwibWFjIjoiYjAyZmE0YmY0NDdhNzUyMWY1ZWI4OGU5NTlhYzA5YWM1NTAyMDVhOGI2NmVhYzdhYWYzZjY2ZjhiM2Q2M2EyYSJ9; expires=Thu, 22-Mar-2018 06:43:14 GMT; Max-Age=7200; path=/
Accept-Ranges: none
Cache-Control: no-cache, private
HTTP/1.1 200 OK
Connection: Upgrade
Date: Thu, 22 Mar 2018 04:43:14 GMT
X-Frame-Options: SAMEORIGIN
Set-Cookie: laravel_session=P7BtDPdeIdyWhPRRKw7TZ72PO9bs9O2Es9NFTlM0; expires=Thu, 22-Mar-2018 06:43:14 GMT; Max-Age=7200; path=/; HttpOnly
Content-Security-Policy: default-src 'self' 'unsafe-inline' *.vimeo.com *.vimeocdn.com *.bootstrapcdn.com *.gstatic.com *.typekit.net *.googleapis.com *.cloudflare.com data: blob:;script-src 'self' 'unsafe-eval' 'unsafe-inline' *.googleapis.com *.cloudflare.com *.jquery.com *.typekit.net *.bootstrapcdn.com *.google-analytics.com;img-src 'self' *.gstatic.com *.googleapis.com *.cloudflare.com *.typekit.net data: *.google-analytics.com
Cache-Control: max-age=0
Content-Type: text/html; charset=UTF-8
Expires: Thu, 22 Mar 2018 04:43:12 GMT
Upgrade: h2