X-UA-Compatible: IE=edge, Chrome=1 Content-Type: text/html; charset=utf-8 Content-Security-Policy: default-src 'self'; connect-src https://localhost https://*.instapaper.com https://*.stripe.com https://getpocket.com https://slack.engineering https://*.slack.engineering https://*.medium.com https://medium.com https://*.medium.com https://*.algolia.net https://cdn-static-1.medium.com https://dnqgz544uhbo8.cloudfront.net https://*.lightstep.com 'self'; font-src data: https://*.amazonaws.com https://*.medium.com https://medium.com https://*.gstatic.com https://dnqgz544uhbo8.cloudfront.net https://use.typekit.net https://cdn-static-1.medium.com 'self'; frame-src chromenull: https: webviewprogressproxy: medium: 'self'; img-src blob: data: https: 'self'; media-src https://*.cdn.vine.co https://d1fcbxp97j4nb2.cloudfront.net https://d262ilb51hltx0.cloudfront.net https://*.medium.com https://gomiro.medium.com https://miro.medium.com https://pbs.twimg.com 'self'; object-src 'self'; script-src 'unsafe-eval' 'unsafe-inline' about: https: 'self'; style-src 'unsafe-inline' data: https: 'self'; report-uri https://csp.medium.com X-Obvious-Tid: 1492130971310:5da514cea88f X-Content-Type-Options: nosniff Expires: Thu, 09 Sep 1999 09:09:09 GMT Set-Cookie: uid=lo_9741de810e1; path=/; expires=Sat, 14 Apr 2018 00:49:31 GMT; secure; httponly HTTP/1.1 200 OK Pragma: no-cache Connection: keep-alive Tk: T Server: openresty X-Frame-Options: sameorigin Date: Fri, 14 Apr 2017 00:49:31 GMT X-Powered-By: Medium Cache-Control: no-cache, no-store, max-age=0, must-revalidate Content-Length: 147299 Link: <https://medium.com/humans.txt>; rel="humans" X-XSS-Protection: 1; mode=block X-Obvious-Info: 28586-6143d83,6143d83 Set-Cookie: sid=1:LuZfD/1dmcw5NLCIsGND/nhqy8DCZCWnmjFDMMlcj/lLI8mHKQ/VANpAXYJiGcdy; path=/; expires=Sat, 14 Apr 2018 00:49:31 GMT; secure; httponly