HTTP/1.1 200 200
Content-Length: 0
Connection: keep-alive
Server: nginx
Date: Thu, 07 May 2026 05:11:46 GMT
X-Frame-Options: SAMEORIGIN
Frame-Options: SAMEORIGIN
X-Download-Options: noopen
Referrer-Policy: unsafe-url
X-Permitted-Cross-Domain-Policies: master-only
Content-Security-Policy: default-src * 'unsafe-inline' 'unsafe-eval'
X-Application-Context: application
Set-Cookie: JSESSIONID=A3510E2CDFEC1AEDCCDE91434856ECA9; Path=/; HttpOnly
Set-Cookie: Path=/; HttpOnly; Secure; SameSite=None
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000; includeSubdomains;
X-Content-Type-Options: nosniff