Access-Control-Allow-Origin: *
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Transfer-Encoding: chunked
Server: Apache
Set-Cookie: ci_session=r87n3lsmmkhtuk52iss3d24ugt27agsq; expires=Fri, 16-Feb-2018 01:12:29 GMT; Max-Age=7200; path=/; HttpOnly
Cache-Control: no-transform
HTTP/1.1 200 OK
Date: Thu, 15 Feb 2018 23:12:29 GMT
Content-Security-Policy: default-src 'self'; img-src 'self' data: https://*.zopim.com https://*.google-analytics.com https://*.doubleclick.net https://www.facebook.com https://youtube.com https://www.youtube.com https://*.zendesk.com https://*.vendexo.com; style-src 'self' 'unsafe-inline' netdna.bootstrapcdn.com fonts.googleapis.com ; font-src 'self' https://fonts.gstatic.com https://v2.zopim.com data:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://v2.zopim.com https://*.google-analytics.com https://connect.facebook.net https://*.zendesk.com https://*.vendexo.com; connect-src 'self' wss://*.zopim.com https://*.zendesk.com; child-src 'self' https://www.google.com https://youtube.com https://www.youtube.com;
Content-Type: text/html; charset=UTF-8
X-UA-Compatible: IE=edge
Pragma: no-cache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: csrf_cookie_name=5d3e239047b3681b9eb5ffbc0ae8ff48; expires=Fri, 16-Feb-2018 01:12:29 GMT; Max-Age=7200; path=/
P3P: policyref="/w3c/p3p.xml", CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Cache-Control: no-store, no-cache, must-revalidate
Vary: Accept-Encoding
Timing-Allow-Origin: *