HTTP/1.1 301 Moved Permanently
Location: https://toppik.com/
Content-Length: 0
Connection: close
HTTP/2 308
location: https://www.toppik.com/
content-length: 0
strict-transport-security: max-age=31536000
HTTP/2 307
cache-control: no-cache, no-store
content-type: text/html
content-length: 122
x-iinfo: 10-16884747-0 NNNN RT(1634725016426 0) q(0 0 -1 0) r(0 -1) b6 U5
strict-transport-security: max-age=31536000
set-cookie: visid_incap_2002096=7Ni6kH/FQT2RWr6te4Wu5Zjsb2EAAAAAQUIPAAAAAADHB3M+rshDYfjaLILQrQPy; expires=Thu, 20 Oct 2022 08:25:59 GMT; HttpOnly; path=/; Domain=.toppik.com; Secure; SameSite=None
set-cookie: incap_ses_514_2002096=+7kjZ+1RsiwHeUqTxBgiB5jsb2EAAAAALuSyTYpDePblBKetHd7lYA==; path=/; Domain=.toppik.com; Secure; SameSite=None
content-security-policy-report-only: style-src 'self' 'unsafe-eval' 'unsafe-hashes' 'unsafe-inline' data: blob: ws.sharethis.com services.postcodeanywhere.co.uk static.curations.bazaarvoice.com; default-src 'self' 'unsafe-eval' 'unsafe-hashes' 'unsafe-inline' data: blob:; img-src 'self' 'unsafe-eval' 'unsafe-hashes' 'unsafe-inline' data: blob: services.postcodeanywhere.co.uk cdn2.exitintel.com www.toppik.com network.bazaarvoice.com lh4.googleusercontent.com www.facebook.com lh5.googleusercontent.com lh6.googleusercontent.com www.google.com tags.w55c.net *.doubleclick.net betastats.exitintel.com toppik.com assets.pinterest.com bat.bing.com ib.adnxs.com secure.gravatar.com api.bazaarvoice.com lh3.googleusercontent.com us-gmtdmp.mookie1.com cdn.cookielaw.org ws.sharethis.com www.google-analytics.com; frame-src 'self' 'unsafe-eval' 'unsafe-hashes' 'unsafe-inline' data: blob: t.sharethis.com www.youtube-nocookie.com ws.sharethis.com gum.criteo.com cddt3p.digitaltargetonline.com tags.tiqcdn.com www.youtube.com *.doubleclick.net www.facebook.com api.bazaarvoice.com; connect-src 'self' 'unsafe-eval' 'unsafe-hashes' 'unsafe-inline' data: blob: cdn2.exitintel.com l.sharethis.com in.hotjar.com aacdn.nagich.com apps.bazaarvoice.com *.doubleclick.net www.google.com cddt3p.digitaltargetonline.com cdn.cookielaw.org www.facebook.com bat.bing.com api.bazaarvoice.com t.mplxtms.com; script-src 'self' 'unsafe-eval' 'unsafe-hashes' 'unsafe-inline' data: blob: churc11180.pcapredict.com www.google-analytics.com geolocation.onetrust.com ws.sharethis.com cdn.cookielaw.org www.youtube.com *.doubleclick.net network.bazaarvoice.com static.curations.bazaarvoice.com services.postcodeanywhere.co.uk cdn-akamai.mookie1.com bs.serving-sys.com bat.bing.com tags.tiqcdn.com api.bazaarvoice.com curations-static.feedmagnet.com get.exitintel.com www.google.com static.hotjar.com aacdn.nagich.com apps.bazaarvoice.com analytics-static.ugc.bazaarvoice.com t.sharethis.com cdn2.exitintel.com www.googletagmanager.com; form-action www.facebook.com; font-src 'self' 'unsafe-eval' 'unsafe-hashes' 'unsafe-inline' data: blob: static.curations.bazaarvoice.com fonts.gstatic.com; report-uri /csp_report
location: https://www.toppik.com/
HTTP/2 200
cache-control: max-age=0, must-revalidate, no-cache, no-store
pragma: no-cache
content-length: 122497
content-type: text/html; charset=UTF-8
expires: Tue, 20 Oct 2020 10:16:44 GMT
vary: Accept-Encoding
server: nginx
set-cookie: PHPSESSID=nj307ia1408nftp62gfvdql3cr; expires=Wed, 20-Oct-2021 11:16:57 GMT; Max-Age=3600; path=/; domain=www.toppik.com; secure; HttpOnly
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-frame-options: SAMEORIGIN
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000;
date: Wed, 20 Oct 2021 10:16:57 GMT
set-cookie: visid_incap_2002096=es/9lmEUQLSLc9P9A5JBzZnsb2EAAAAAQUIPAAAAAAAYeVYOGo/LHVvV+rNKOQt9; expires=Thu, 20 Oct 2022 08:25:59 GMT; HttpOnly; path=/; Domain=.toppik.com; Secure; SameSite=None
set-cookie: incap_ses_514_2002096=r+4uDD3vBlFweUqTxBgiB5nsb2EAAAAAx4HfIb3yWSwIZ6at93ETUg==; path=/; Domain=.toppik.com; Secure; SameSite=None
x-cdn: Imperva
content-security-policy-report-only: style-src 'self' 'unsafe-eval' 'unsafe-hashes' 'unsafe-inline' data: blob: ws.sharethis.com services.postcodeanywhere.co.uk static.curations.bazaarvoice.com; default-src 'self' 'unsafe-eval' 'unsafe-hashes' 'unsafe-inline' data: blob:; img-src 'self' 'unsafe-eval' 'unsafe-hashes' 'unsafe-inline' data: blob: services.postcodeanywhere.co.uk cdn2.exitintel.com www.toppik.com network.bazaarvoice.com lh4.googleusercontent.com www.facebook.com lh5.googleusercontent.com lh6.googleusercontent.com www.google.com tags.w55c.net *.doubleclick.net betastats.exitintel.com toppik.com assets.pinterest.com bat.bing.com ib.adnxs.com secure.gravatar.com api.bazaarvoice.com lh3.googleusercontent.com us-gmtdmp.mookie1.com cdn.cookielaw.org ws.sharethis.com www.google-analytics.com; frame-src 'self' 'unsafe-eval' 'unsafe-hashes' 'unsafe-inline' data: blob: t.sharethis.com www.youtube-nocookie.com ws.sharethis.com gum.criteo.com cddt3p.digitaltargetonline.com tags.tiqcdn.com www.youtube.com *.doubleclick.net www.facebook.com api.bazaarvoice.com; connect-src 'self' 'unsafe-eval' 'unsafe-hashes' 'unsafe-inline' data: blob: cdn2.exitintel.com l.sharethis.com in.hotjar.com aacdn.nagich.com apps.bazaarvoice.com *.doubleclick.net www.google.com cddt3p.digitaltargetonline.com cdn.cookielaw.org www.facebook.com bat.bing.com api.bazaarvoice.com t.mplxtms.com; script-src 'self' 'unsafe-eval' 'unsafe-hashes' 'unsafe-inline' data: blob: churc11180.pcapredict.com www.google-analytics.com geolocation.onetrust.com ws.sharethis.com cdn.cookielaw.org www.youtube.com *.doubleclick.net network.bazaarvoice.com static.curations.bazaarvoice.com services.postcodeanywhere.co.uk cdn-akamai.mookie1.com bs.serving-sys.com bat.bing.com tags.tiqcdn.com api.bazaarvoice.com curations-static.feedmagnet.com get.exitintel.com www.google.com static.hotjar.com aacdn.nagich.com apps.bazaarvoice.com analytics-static.ugc.bazaarvoice.com t.sharethis.com cdn2.exitintel.com www.googletagmanager.com; form-action www.facebook.com; font-src 'self' 'unsafe-eval' 'unsafe-hashes' 'unsafe-inline' data: blob: static.curations.bazaarvoice.com fonts.gstatic.com; report-uri /csp_report
x-iinfo: 10-16884764-16884765 NNNN CT(23 23 0) RT(1634725016502 0) q(0 0 0 -1) r(5 5) U5
|