X-Cloud-Trace-Context: bdec8ff0207c1d8a388fe031e55640e5
Content-Type: text/html; charset=utf-8
Date: Mon, 19 Feb 2018 19:34:14 GMT
x-xss-protection: 1; mode=block
Content-Security-Policy: script-src 'self' 'unsafe-inline' apis.google.com *.youtube.com www.googleapis.com *.google-analytics.com *.ytimg.com ajax.googleapis.com www.googleapis.com; default-src 'self'; img-src 'self' *.google.com *.youtube.com www.google-analytics.com ssl.google-analytics.com *.googleusercontent.com *.gstatic.com *.googleapis.com *.ggpht.com commondatastorage.googleapis.com *.commondatastorage.googleapis.com data: blob:; media-src 'self' blob: data:; style-src 'self' 'unsafe-inline' fonts.googleapis.com; frame-src 'self' *.youtube.com *.youtube-nocookie.com; connect-src 'self' www.googleapis.com; font-src 'self' fonts.googleapis.com themes.googleusercontent.com *.gstatic.com data:
X-Frame-Options: SAMEORIGIN
Server: Google Frontend
HTTP/1.1 200 OK
Alt-Svc: hq=":443"; ma=2592000; quic=51303431; quic=51303339; quic=51303338; quic=51303337; quic=51303335,quic=":443"; ma=2592000; v="41,39,38,37,35"
Content-Length: 5222
x-content-type-options: nosniff
strict-transport-security: max-age=2592000; includeSubDomains