Content-Security-Policy: default-src 'self' ws://localhost:35729 *.google-analytics.com *.google.com *.gstatic.com *.ggpht.com *.googleusercontent.com *.doubleclick.net *.googleadservices.com; font-src 'self' themes.googleusercontent.com *.gstatic.com; frame-src 'self' *.google.com *.doubleclick.net; script-src 'self' 'unsafe-eval' 'unsafe-inline' localhost:35729 tagmanager.google.com *.doubleclick.net *.googleanalytics.com *.google-analytics.com *.googletagmanager.com *.googleadservices.com; style-src 'self' 'unsafe-inline' tagmanager.google.com fonts.googleapis.com *.google.com *.gstatic.com
Date: Tue, 03 Oct 2017 19:27:00 GMT
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,35"
X-Cloud-Trace-Context: 3a624dc0ced8fe7a873032779a152c93;o=1
Content-Type: text/html; charset=utf-8
Server: Google Frontend
Expires: Tue, 03 Oct 2017 19:27:00 GMT
Set-Cookie: session=eyJzaWQiOiIya3FpcXROZEFLdVhSaVpRQ1ZFMWUxIn0=|1507058820|61e3299b57848d0812294170671e87fff73b2f59; Path=/; HttpOnly
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache
X-Content-Type-Options: nosniff
HTTP/1.1 200 OK
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=2592000; includeSubdomains
Content-Length: 26825