Server | nginx |
Content-Type | text/html; charset=UTF-8 |
Connection | keep-alive |
Cache-Control | private, no-cache, no-store, must-revalidate |
Expires | -1 |
Vary | Accept-Encoding,User-Agent |
Content-Encoding | gzip |
P3P | CP="CAO DSP COR LAW CURa ADMa DEVa TAIa OUR BUS IND ONL UNI COM NAV CNT STA" |
Content-Security-Policy | default-src *; script-src 'self' 'unsafe-inline' 'unsafe-eval' gameknot.com *.gameknot.com *.ichess.com *.google-analytics.com http://*.googleapis.com https://*.googleapis.com http://*.google.com https://*.google.com https://*.stripe.com *.facebook.net *.facebook.com; style-src 'self' 'unsafe-inline' 'unsafe-eval' gameknot.com *.gameknot.com *.ichess.com; connect-src 'self' gameknot.com *.gameknot.com ws://*.gameknot.com:* *.ichess.com *.googleapis.com https://*.stripe.com; report-uri /log-data.pl; |
X-Content-Type-Options | nosniff |