HTTP/1.1 200 200
Content-Length: 0
Connection: keep-alive
Server: nginx
Date: Tue, 05 May 2026 12:09:07 GMT
X-Frame-Options: SAMEORIGIN
Frame-Options: SAMEORIGIN
X-Download-Options: noopen
Referrer-Policy: unsafe-url
X-Permitted-Cross-Domain-Policies: master-only
Content-Security-Policy: default-src * 'unsafe-inline' 'unsafe-eval'
X-Application-Context: application
Set-Cookie: JSESSIONID=871427D4D4147DE90867249A4DB1FE3F; Path=/; HttpOnly
Set-Cookie: Path=/; HttpOnly; Secure; SameSite=None
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000; includeSubdomains;
X-Content-Type-Options: nosniff