connection: |
close |
content-length: |
248257 |
cf-ray: |
8cbe1bab2a3252b1-LHR |
server-timing: |
horizon;dur=102 |
content-security-policy: |
child-src 'self' https://dash.bounceexchange.com https://assets.bounceexchange.com https://www.googletagmanager.com https://*.liveperson.net https://cdn.appdynamics.com https://*.lpsnmedia.net https://www.facebook.com https://connect.facebook.net https://*.google.com https://widget.trustpilot.com https://*.doubleclick.net https://www.youtube.com https://www.zenaps.com https://*.criteo.com https://static.criteo.net https://ln-rules.rewardstyle.com https://www.shoplooks.com https://www.recaptcha.net https://recaptcha.net https://vars.hotjar.com https://*.akamaihd.net https://*.translate.naver.net https://tr.snapchat.com https://dekopay.preprod.k8s.dekopay.org https://pay.deko.finance https://www.pinterest.com https://smct.co https://*.smct.co https://smct.io https://*.smct.io https://d2d7do8qaecbru.cloudfront.net blob:; connect-src 'self' https://*.lpsnmedia.net https://sgtm.biossance.com https://*.cdnbasket.net https://*.cdnwidget.com https://events.bouncex.net https://coupons.bounceexchange.com https://*.thcdn.com https://*.ingest.sentry.io https://*.pingdom.net https://*.doubleclick.net https://*.google-analytics.com https://capture.trackjs.com https://fp.zenaps.com https://www.facebook.com https://*.google.com https://*.thehut.net https://privacyportal-eu.onetrust.com https://geolocation.onetrust.com https://cdn.cookielaw.org https://*.liveperson.net wss://*.liveperson.net https://services.postcodeanywhere.co.uk https://*.googleapis.com https://*.akamaihd.net https://*.sciencebehindecommerce.com https://*.baidu.com https://vc.hotjar.io https://*.hotjar.com wss://*.hotjar.com https://*.trustpilot.com https://*.pinterest.com https://*.doubleclick.net https://*.bing.com https://connect.facebook.net https://*.parcellab.com https://ct.pinterest.com https://tr.snapchat.com https://*.contentsquare.net https://*.criteo.com https://analytics.tiktok.com wss://*.liveperson.net https://www.allsole.com/e2/ds/relay https://horizon-api.www.allsole.com/graphql https://*.ingest.sentry.io https://s1.thcdn.com https://smct.co https://*.smct.co https://smct.io https://*.smct.io https://cognito-identity.eu-west-1.amazonaws.com https://firehose.eu-west-1.amazonaws.com https://*.listrakbi.com https://*.listrak.com; font-src 'self' data: https://cdn.listrakbi.com https://assets.bounceexchange.com https://*.thcdn.com https://fp.zenaps.com https://cdnjs.cloudflare.com https://fonts.gstatic.com https://fonts.googleapis.com https://fonts.smct.co https://fonts.smct.io; form-action 'self' https://dev.bounceexchange.com https://api.bounceexchange.com https://www.facebook.com https://m.allsole.com https://checkout.allsole.com https://www.allsole.com https://connect.facebook.net https://tr.snapchat.com; frame-ancestors; img-src 'self' data: https://*.thcdn.com https://col.eum-appdynamics.com https://usage.trackjs.com https://*.lpsnmedia.net https://*.doubleclick.net https://www.google-analytics.com https://*.google.com https://cx.atdmt.com https://www.zenaps.com https:; media-src 'self' https://*.thcdn.com https://*.lpsnmedia.net blob: https://*.lpsnmedia.net; object-src 'self' https://*.thcdn.com https://www.youtube.com; report-uri https://csp.thehut.net/cspReport.txt; script-src 'self' https://sgtm.biossance.com https://dev.bounceexchange.com https://tag.wknd.ai https://api.bounceexchange.com https://assets.bounceexchange.com https://tag.bounceexchange.com https://dash.bounceexchange.com https://cdn.parcellab.com https://smct.co https://*.smct.co https://smct.io https://*.smct.io 'unsafe-eval' 'unsafe-inline' data: https://*.thcdn.com https://*.thehut.net https://rum-static.pingdom.net https://*.parcellab.com https://*.liveperson.net https://*.lpsnmedia.net https://*.doubleclick.net https://static.cdn-apple.com https://*.liveperson.com https://geolocation.onetrust.com https://cdn.cookielaw.org https://www.googletagmanager.com https://cdnjs.cloudflare.com https://fp.zenaps.com https://www.youtube.com https://www.google-analytics.com https://*.google.com https://connect.facebook.net https://bat.bing.com https://widget.trustpilot.com https://s.ytimg.com https://www.googletagservices.com https://*.googleapis.com https://www.facebook.com https://www.googleadservices.com https://*.gstatic.com https://*.gstatic.cn https://www.dwin1.com https://cdn.trackjs.com https://*.criteo.com https://static.criteo.net https://*.baidu.com https://remote.captcha.com https://ssl.bing.com https://*.akamaihd.net https://ln-rules.rewardstyle.com https://www.recaptcha.net https://recaptcha.net https://*.sciencebehindecommerce.com https://*.shoplooks.com https://slooks.top https://slooks.me https://static.hotjar.com https://script.hotjar.com https://*.microsofttranslator.com https://google.com https://*.trustpilot.com https://*.translate.naver.net https://*.doubleclick.net https://*.google-analytics.com https://sc-static.net https://*.google.co.uk https://google.co.uk https://s.pinimg.com https://*.contentsquare.net https://app.contentsquare.com https://assets.dekopay.com https://analytics.tiktok.com https://*.ibytedtos.com https://s1.thcdn.com https://*.listrakbi.com https://*.listrak.com; style-src 'self' 'unsafe-inline' https://*.liveperson.net https://*.lpsnmedia.net https://cdn.listrakbi.com https://assets.bounceexchange.com https://www.allsole.com https://*.thcdn.com https://*.google.com https://*.googleapis.com https://fp.zenaps.com https://cdnjs.cloudflare.com https://www.googletagmanager.com https://www.shoplooks.com https://static.shoplooks.com https://*.googleapis.com https://*.translate.naver.net https://*.microsofttranslator.com https://cdn.parcellab.com https://s1.thcdn.com https://fonts.googleapis.com https://fonts.smct.co https://fonts.smct.io; upgrade-insecure-requests; report-to report-endpoint; frame-src https://smct.co https://*.smct.co https://smct.io https://*.smct.io https://d2d7do8qaecbru.cloudfront.net https://www.google.com https://recaptcha.google.com https://*.lpsnmedia.net https://*.liveperson.net; default-src 'self' https://*.lpsnmedia.net; |
report-to: |
{"group":"report-endpoint","max_age":86400,"endpoints":[{"url":"https://csp.thehut.net/cspReport.txt","priority":1,"weight":1}],"include_subdomains":true} |
x-horizon-status-code: |
200 |
cache-control: |
max-age=0, s-maxage=900, stale-while-revalidate=300, stale-if-error=3600 |
server: |
cloudflare |
x-altitude-horizon-ray: |
E4t5fYAZEe-9AYsOzbb8qA |
x-horizon-request-duration: |
102 |
content-type: |
text/html |
accept-ranges: |
bytes |
via: |
1.1 varnish, 1.1 varnish |
age: |
766 |
set-cookie: |
chumewe_user=922e624d-7486-450f-8125-f4a6a91b95c1; Domain=.biossance.com; Expires=Wed, 05 Nov 2025 17:30:32 GMT; Path=/; Secure,chumewe_user_version=v1; Domain=.biossance.com; Expires=Wed, 05 Nov 2025 17:30:32 GMT; Path=/; Secure,chumewe_sess=be64a768-3867-4989-9f2f-74ce9d04f615; Domain=.biossance.com; Expires=Tue, 01 Oct 2024 21:30:32 GMT; Path=/; Secure,chumewe_sess_version=v1; Domain=.biossance.com; Expires=Tue, 01 Oct 2024 21:30:32 GMT; Path=/; Secure |
tmp-path: |
|
fastly-restarts: |
2 |
date: |
Tue, 01 Oct 2024 17:30:32 GMT |
x-served-by: |
cache-lhr-egll1980073-LHR, cache-lhr-egll1980084-LHR, cache-ams21038-AMS |
x-cache: |
MISS, HIT, MISS |
x-cache-hits: |
0, 17, 0 |
vary: |
Accept-Encoding |
x-entrypoint-redirected: |
false |
x-entrypoint-rewritten: |
false |
x-redirects-cache: |
MISS |
x-experimentation-cache: |
MISS |
strict-transport-security: |
max-age=31557600 |
|