HTTP/1.1 200 OK
Date: Fri, 07 Jun 2019 00:37:53 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=d57e1aa4e8a910e50e9289ccc9795461f1559867872; expires=Sat, 06-Jun-20 00:37:52 GMT; path=/; domain=.greencard.az; HttpOnly
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src https: data: 'unsafe-inline' 'unsafe-eval'; script-src 'unsafe-inline' 'unsafe-eval' https:; img-src https: data:; style-src 'unsafe-inline' https://maxcdn.bootstrapcdn.com https://greencard.az; font-src data: https://maxcdn.bootstrapcdn.com https://greencard.az; connect-src wss://*.userlike.com https://*.userlike.com;
Strict-Transport-Security: max-age=31536000; includeSubdomains
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: origin, x-requested-with, content-type
Access-Control-Allow-Methods: GET, POST
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: PHPSESSID=2a6501334fcdfd65b1e559cc69f8d8f2; path=/; secure; HttpOnly
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Content-Security-Policy: allow 'self';
X-WebKit-CSP: allow 'self';
Strict-Transport-Security: max-age=31536000
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: origin, x-requested-with, content-type
Access-Control-Allow-Methods: GET, POST
Cache-Control: public
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 4e2e8f5baaee57e7-DFW