Content-Type: text/html; charset=utf-8
X-Content-Type-Options: nosniff
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
X-XSS-Protection: 1; mode=block
Transfer-Encoding: chunked
X-Permitted-Cross-Domain-Policies: master-only
Server: Apache
Content-Security-Policy: default-src 'self'; connect-src 'self' https://*.streamlock.net https://go-va-stream.gemeenteoplossingen.nl; script-src 'self' google-analytics.com www.google-analytics.com siteimproveanalytics.com https://www.gstatic.com; style-src 'self' 'unsafe-inline'; img-src 'self' www.google-analytics.com ssl.siteimprove.com pbs.twimg.com https://ssl.google-analytics.com; child-src 'self' https://*.langetermijnagenda.nl https://*.stemtzo.nl; frame-src 'self' https://*.langetermijnagenda.nl https://*.stemtzo.nl; media-src 'self' blob: https://*.streamlock.net https://go-va-stream.gemeenteoplossingen.nl; object-src 'none'; report-uri /api/csp-reports;
HTTP/1.1 200 OK
Set-Cookie: PHPSESSID=ps9hbrpnnliqeruri08dabhl95; path=/; secure; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains
Pragma: no-cache
Date: Thu, 21 Dec 2017 05:32:11 GMT
X-UA-Compatible: IE=Edge
X-Frame-Options: SAMEORIGIN
Expires: Thu, 19 Nov 1981 08:52:00 GMT