HTTP/1.1 200 200
Content-Length: 0
Connection: keep-alive
Server: nginx
Date: Fri, 08 May 2026 11:49:43 GMT
X-Frame-Options: SAMEORIGIN
Frame-Options: SAMEORIGIN
X-Download-Options: noopen
Referrer-Policy: unsafe-url
X-Permitted-Cross-Domain-Policies: master-only
Content-Security-Policy: default-src * 'unsafe-inline' 'unsafe-eval'
X-Application-Context: application
Set-Cookie: JSESSIONID=DC504E616C4DC3E1557390E140FA946A; Path=/; HttpOnly
Set-Cookie: Path=/; HttpOnly; Secure; SameSite=None
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000; includeSubdomains;
X-Content-Type-Options: nosniff