HTTP/1.1 302 Found
Server: nginx
Date: Sat, 21 May 2022 22:32:05 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: PHPSESSID=41e902ace977507ba337194abaa95e23; expires=Sat, 21-May-2022 23:32:05 GMT; Max-Age=3600; path=/; domain=vonroc.pt; HttpOnly; SameSite=Lax
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Location: https://vonroc.pt/
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests;
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
X-Environment: Hipex/3 main
HTTP/2 200
server: nginx
date: Sat, 21 May 2022 22:32:05 GMT
content-type: text/html; charset=UTF-8
content-length: 127862
vary: Accept-Encoding
vary: Accept-Encoding
content-security-policy-report-only: font-src fonts.googleapis.com fonts.gstatic.com *.feedbackcompany.com *.googleapis.com *.gstatic.com *.cloudflare.com *.twitter.com *.typekit.net *.twimg.com *.trustedshops.com 'self' data: *.zopim.com *.facebook.net *.facebook.com *.fontawesome.com https://widgets.trustedshops.com *.vonroc.com *.adyen.com data: 'self' 'unsafe-inline'; form-action secure.authorize.net test.authorize.net pilot-payflowlink.paypal.com *.feedbackcompany.com *.twitter.com *.vonroc.com *.adyen.com 'self' 'unsafe-inline'; frame-ancestors 'self'; frame-src fast.amc.demdex.net *.adobe.com player.vimeo.com *.youtube.com https://www.google.com/recaptcha/ secure.authorize.net test.authorize.net www.paypal.com www.sandbox.paypal.com pilot-payflowlink.paypal.com *.adyen.com *.twitter.com *.demdex.net *.google.com *.weltpixel.com *.hotjar.com *.freshchat.com *.vimeo.com *.paypal.com *.vonroc.com 'self' 'unsafe-inline'; img-src assets.adobedtm.com *.omtrdc.net dpm.demdex.net *.everesttech.net *.adobe.com widgets.magentocommerce.com 'self' data: www.paypalobjects.com t.paypal.com *.vimeocdn.com i.ytimg.com www.paypal.com fpdbs.paypal.com fpdbs.sandbox.paypal.com *.adyen.com maps.googleapis.com maps.gstatic.com *.feedbackcompany.com *.cloudflare.com *.cdninstagram.com *.klarna.com *.demdex.net *.googleadservices.com *.google-analytics.com *.googletagmanager.com *.paypal.com *.twitter.com *.twimg.com *.ytimg.com *.lightemporium.com *.usercentrics.eu *.trustedshops.com *.google.nl *.google.com *.zopim.com *.bing.com c.clarity.ms *.facebook.net *.facebook.com https://widgets.trustedshops.com *.gstatic.com *.vimeo.com *.visualwebsiteoptimizer.com *.vonroc.com data: 'self' 'unsafe-inline'; script-src assets.adobedtm.com *.adobe.com www.paypalobjects.com js.braintreegateway.com www.paypal.com s.ytimg.com www.googleapis.com *.vimeo.com www.vimeo.com *.vimeocdn.com https://www.gstatic.com/recaptcha/ https://www.google.com/recaptcha/ secure.authorize.net test.authorize.net www.sandbox.paypal.com t.paypal.com *.adyen.com maps.googleapis.com maps.gstatic.com fonts.googleapis.com *.feedbackcompany.com *.cloudflare.com *.twitter.com *.sentry-cdn.com *.google-analytics.com *.googleadservices.com *.paypalobject.com *.google.com *.google.nl *.youtube.com *.gstatic.com *.googletagmanager.com *.trustedshops.com *.usercentrics.eu *.fontawesome.com *.amazonaws.com *.zdassets.com *.dassets.com *.diffuse.nl *.yotpo.com *.twimg.com chimpstatic.com *.zopim.com *.newrelic.com *.facebook.net *.facebook.com *.avada.io https://widgets.trustedshops.com https://www.googletagmanager.com tagmanager.google.com *.clarity.ms *.wiqhit.com *.bugherd.com *.hotjar.com *.prisjakt.nu *.bing.com *.visualwebsiteoptimizer.com *.freshchat.com *.vonroc.com *.nr-data.net 'self' 'unsafe-inline' 'unsafe-eval'; style-src *.adobe.com fonts.googleapis.com *.googleapis.com *.cloudflare.com *.twitter.com *.twimg.com *.gstatic.com *.typekit.net *.trustedshops.com *.usercentrics.eu *.fontawesome.com https://widgets.trustedshops.com tagmanager.google.com *.bootstrapcdn.com *.freshchat.com *.vonroc.com *.adyen.com 'self' 'unsafe-inline'; object-src 'self' 'unsafe-inline'; media-src *.adobe.com *.vimeo.com *.adyen.com 'self' 'unsafe-inline'; manifest-src 'self' 'unsafe-inline'; connect-src dpm.demdex.net amcglobal.sc.omtrdc.net www.sandbox.paypal.com www.paypalobjects.com www.paypal.com *.adyen.com *.feedbackcompany.com *.google-analytics.com *.instagram.com *.doubleclick.net *.demdex.net *.cloudflare.com *.twitter.com *.amazonaws.com *.zdassets.com *.paypal.com *.twimg.com *.zopim.com *.sentry.io wss://widget-mediator.zopim.com client.diffuse.tools *.facebook.net *.facebook.com *.trustedshops.com *.etrusted.com https://www.google-analytics.com *.clarity.ms *.hotjar.com *.google.com *.googleapis.com *.vonroc.com *.nr-data.net *.vimeo.com 'self' 'unsafe-inline'; child-src *.vimeo.com *.adyen.com http: https: blob: 'self' 'unsafe-inline'; default-src 'self' 'unsafe-inline' 'unsafe-eval'; base-uri 'self' 'unsafe-inline';
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests;
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-environment: Hipex/3 main
pragma: no-cache
expires: -1
cache-control: no-store, no-cache, must-revalidate, max-age=0
accept-ranges: bytes
x-environment: Hipex/3 general
|