| date: |
Tue, 01 Oct 2024 05:46:45 GMT |
| content-type: |
text/html; charset=UTF-8 |
| transfer-encoding: |
chunked |
| connection: |
close |
| accept-ch: |
Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA |
| critical-ch: |
Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA |
| cross-origin-embedder-policy: |
require-corp |
| cross-origin-opener-policy: |
same-origin |
| cross-origin-resource-policy: |
same-origin |
| origin-agent-cluster: |
?1 |
| permissions-policy: |
accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=() |
| referrer-policy: |
same-origin |
| x-content-options: |
nosniff |
| x-frame-options: |
SAMEORIGIN |
| cf-mitigated: |
challenge |
| cf-chl-out: |
nh9Bfm03/OSdZacVT7H+4pn/jAvIsYndUytNOz3H5wggw2xkQ72uDXIXsU8nataNBWQUuDb9B4WN9FuMJWORWyeVreVhZchVzgw5bf9UWszUWP89DfGwu3dGRR4CoPw2rdVB/iH8HZJOD0LdleDKWA==$vfZEomm3+7eK4RJOJNaJWg== |
| cache-control: |
private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 |
| expires: |
Thu, 01 Jan 1970 00:00:01 GMT |
| set-cookie: |
__cf_bm=BqYAFmTgokpMKdlatj7DZCo.bKCmRgEqXnEU3nU8of4-1727761605-1.0.1.1-NQUfXREILMkpXjfL6k43223STVG1TVoaAhO.7humIzhm3RaRL4sQJHsVxMyiVuCR._eo24QzqPLE8wZp_ycFpQ; path=/; expires=Tue, 01-Oct-24 06:16:45 GMT; domain=.osprey.com; HttpOnly; Secure; SameSite=None |
| content-security-policy: |
base-uri 'self' 'unsafe-inline' 'unsafe-eval'; child-src http: https: blob: 'self' 'unsafe-inline'; connect-src *.rapidspike.com www.cloudflare.com commerce.adobedtm.com commerce.adobedc.net *.snplow.net dpm.demdex.net api.magento.com commerce.adobe.io performance.typekit.net commerce.adobe.net amcglobal.sc.omtrdc.net google.com us-central1-adaptive-growth.cloudfunctions.net app-measurement.com doubleclickbygoogle.com doubleclick.com doubleclick.net googleadservices.com googlesyndication-cn.com googlesyndication.com googletagservices.com *.google.co.uk *.google.fr *.google.de *.google.es *.google.it *.google.nl *.google.be *.google.pl *.google.se *.google.ie *.google.dk *.google.pt *.google.gr *.google.fi *.google.cz *.google.hu *.google.at *.google.ro *.google.sk *.google.si *.google.bg *.google.hr *.google.lt *.google.lv *.google.ee *.google.mt *.google.cy *.google.lu *.google.us *.google.com.au *.google.ca *.google.com.pr *.google.com.mx *.google.co.cr www.recaptcha.net vimeo.com www.sandbox.paypal.com www.paypalobjects.com www.paypal.com pilot-payflowlink.paypal.com *.googlesyndication.com *.stripe.com klarna.com *.klarna.com *.klarnacdn.net *.klarnaevt.com *.stripe.network brilliantcollector.com *.brilliantcollector.com *.newrelic.com *.nr-data.net *.algolia.net *.algolia.com *.algolianet.com *.insights.algolia.io *.clarity.ms bat.bing.com api.crobox.com cdn.crobox.io static.klaviyo.com static-forms.klaviyo.com fast.a.klaviyo.com a.klaviyo.com static-tracking.klaviyo.com telemetrics.klaviyo.com kustomerapp.com *.kustomerapp.com knowledge-base.osprey.com locally.com *.locally.com api.addressy.com ekr.zdassets.com parcellab.com *.parcellab.com ct.pinterest.com pinterest.com *.pixriot.com *.storeimaging.com yotpo.com *.yotpo.com swellrewards.com *.swellrewards.com *.kaltura.com *.criteo.com conversions-config.reddit.com rapid-cdn.yottaa.com *.yottaa.net *.impactcdn.com osprey.pxf.io *.tiktok.com 'self' 'unsafe-inline' www.googleadservices.com googletagmanager.com *.googletagmanager.com *.google-analytics.com *.analytics.google.com *.g.doubleclick.net *.google.com *.trustarc.com services.sheerid.com cdn.jsdelivr.net insights.algolia.io; font-src use.typekit.net *.stripe.com klarna.com *.klarna.com *.klarnacdn.net *.klarnaevt.com *.trustarc.com cdn.crobox.io *.klaviyo.com kustomerapp.com *.kustomerapp.com knowledge-base.osprey.com use.fontawesome.com maxcdn.bootstrapcdn.com *.yotpo.com *.googleapis.com *.gstatic.com data: 'self' 'unsafe-inline' fonts.gstatic.com; form-action pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com yotpo.com *.yotpo.com swellrewards.com *.swellrewards.com 'self' 'unsafe-inline'; frame-ancestors *.stripe.com stripe.com 'self'; manifest-src 'self' 'unsafe-inline'; media-src *.adobe.com *.vimeo.com download-video.akamaized.net *.osprey.com blob: data: 'self' 'unsafe-inline'; object-src 'self' 'unsafe-inline'; style-src *.adobe.com *.klaviyo.com parcellab.com *.parcellab.com yotpo.com *.yotpo.com swellrewards.com *.swellrewards.com maxcdn.bootstrapcdn.com *.googleapis.com use.typekit.net p.typekit.net 'self' 'unsafe-inline' googletagmanager.com *.googletagmanager.com tagmanager.google.com fonts.googleapis.com cdn.jsdelivr.net; worker-src 'self' 'unsafe-inline' 'unsafe-eval' osprey.com/p/1/2 blob:; upgrade-insecure-requests; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=FcNq5R9nwNpASxTaJMDO2EGYk1uP3udr1894iwMtin8-1727761605-1.0.1.1-kAG1JjgksF_gkXSRgfENHRJBbsUvg_wlnS4_7MT89r.QkJGcDuFICv1V8uifKc_ZS0iXubFE8hcOU5BrenflBNezOtSKQtuhthwBV65snAI7AVz59hhXtcQKXI_50.xUAYn.hCFdWJ0E__hHODfhtEJixtRGwBOtndhE6uuLbkkm4XlJS1ZEE0.74RNDriXc8hvsgSWwGJeuCZXeRgaUbQ; report-to cf-qaxjgmazbgfxofes, frame-src vice01.osprey.com fast.amc.demdex.net *.adobe.com player.vimeo.com vimeo.com https://www.google.com/recaptcha/ www.recaptcha.net www.paypal.com www.sandbox.paypal.com pilot-payflowlink.paypal.com *.stripe.com klarna.com *.klarna.com *.klarnacdn.net *.klarnaevt.com *.stripe.network *.studentbeans.com consent-pref.trustarc.com helenoftroy.demdex.net www.facebook.com *.kmail-lists.com *.kustomer.support *.kustomer.help knowledge-base.osprey.com locally.com *.locally.com ct.pinterest.com www.xtento.com yotpo.com *.yotpo.com swellrewards.com *.swellrewards.com *.criteo.com osprey.pxf.io embed.podcasts.apple.com 'self' 'unsafe-inline' *.googletagmanager.com td.doubleclick.net *.fls.doubleclick.net bid.g.doubleclick.net services.sheerid.com; img-src cdnjs.cloudflare.com widgets.magentocommerce.com assets.adobedtm.com dpm.demdex.net cm.everesttech.net *.adobe.com p.typekit.net amcglobal.sc.omtrdc.net www.googleadservices.com *.google.co.uk *.google.fr *.google.de *.google.es *.google.it *.google.nl *.google.be *.google.pl *.google.se *.google.ie *.google.dk *.google.pt *.google.gr *.google.fi *.google.cz *.google.hu *.google.at *.google.ro *.google.sk *.google.si *.google.bg *.google.hr *.google.lt *.google.lv *.google.ee *.google.mt *.google.cy *.google.lu *.google.us *.google.com.au *.google.ca *.google.com.pr *.google.com.mx *.google.co.cr *.vimeocdn.com validator.swagger.io www.paypal.com www.paypalobjects.com fpdbs.paypal.com fpdbs.sandbox.paypal.com t.paypal.com *.trustarc.com *.112.2o7.net *.clarity.ms *.bing.com *.crobox.com *.crobox.io www.facebook.com static.klaviyo.com static-forms.klaviyo.com fast.a.klaviyo.com a.klaviyo.com *.cloudfront.net static-tracking.klaviyo.com telemetrics.klaviyo.com kustomerapp.com *.kustomerapp.com *.kustomerhostedcontent.com knowledge-base.osprey.com locally.com *.locally.com parcellab.com *.parcellab.com ct.pinterest.com *.pixriot.com *.storeimaging.com www.xtento.com cdn.xtento.com yotpo.com *.yotpo.com swellrewards.com *.swellrewards.com yotpo-editor-production.s3.amazonaws.com *.kaltura.com *.reddit.com www.ojrq.net *.tiktok.com *.amazon-adsystem.com *.osprey.com data: 'self' 'unsafe-inline' *.helenoftroy.com google.com ssl.gstatic.com googletagmanager.com fonts.googleapis.com *.fls.doubleclick.net ade.googlesyndication.com *.google.com www.gstatic.com *.googletagmanager.com *.google-analytics.com *.analytics.google.com *.g.doubleclick.net ad.doubleclick.net services.sheerid.com; script-src *.rapidspike.com static.cloudflareinsights.com ajax.cloudflare.com cdnjs.cloudflare.com unpkg.com commerce.adobedtm.com assets.adobedtm.com *.adobe.com includestest.ccdc02.com use.typekit.net commerce.adobe.net amcglobal.sc.omtrdc.net *.g.doubleclick.net www.google-analytics.com analytics.google.com magento-recs-sdk.adobe.net vimeo.com www.vimeo.com *.vimeocdn.com player.vimeo.com https://www.gstatic.com/recaptcha/ https://www.google.com/recaptcha/ www.recaptcha.net www.paypal.com www.sandbox.paypal.com www.paypalobjects.com t.paypal.com *.stripe.com klarna.com *.klarna.com *.klarnacdn.net *.klarnaevt.com *.stripe.network *.newrelic.com *.nr-data.net *.trustarc.com adobedtm.com *.algolia.net www.dwin1.com lantern.roeyecdn.com www.clarity.ms bat.bing.com api.crobox.com cdn.crobox.io connect.facebook.net static.klaviyo.com static-forms.klaviyo.com fast.a.klaviyo.com a.klaviyo.com static-tracking.klaviyo.com telemetrics.klaviyo.com kustomerapp.com *.kustomerapp.com locally.com *.locally.com s7.addthis.com parcellab.com *.parcellab.com *.smartling.com *.pinimg.com ct.pinterest.com www.xtento.com cdn.xtento.com yotpo.com *.yotpo.com swellrewards.com *.swellrewards.com *.kaltura.com *.criteo.com *.avmws.com dynamic.criteo.com www.redditstatic.com conversions-config.reddit.com rapid-cdn.yottaa.com *.impactcdn.com osprey.pxf.io *.loggly.com *.tiktok.com *.amazon-adsystem.com 'self' 'unsafe-inline' 'unsafe-eval' googletagmanager.com tagmanager.google.com www.google.com googleads.g.doubleclick.net *.googletagmanager.com www.googleadservices.com cdn.jsdelivr.net; worker-src 'self' 'unsafe-inline' 'unsafe-eval' osprey.com/p/2/2 blob:; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=tOVAZEQeCEoUwXoh9XClSwFKMTnhhhIDFsSlOOgApLw-1727761605-1.0.1.1-MxaIo3OdP8PhMUnhs9mI5KKGbiwybK3gtvE9A4zVxNCE3Eb4GLCudgpCLtPYqtd1SFYfqtJ28Nupp7WqoI0u1cS_BgXa6R67SQNa_84AnEnYEBoBSifDReh6E6b8sv_5Mc7mTih_wFtgbRi6XAE2xC0Hf4pKMFRYulBPeuOkFCYjBOVxGz3cgg_8bJ4hNvuVBKwut3VOn6YhByU4lXiXxQ; report-to cf-wgnsblrtxlcywqjn |
| report-to: |
{"endpoints":[{"url":"https:\/\/csp-reporting.cloudflare.com\/cdn-cgi\/script_monitor\/report?m=FcNq5R9nwNpASxTaJMDO2EGYk1uP3udr1894iwMtin8-1727761605-1.0.1.1-kAG1JjgksF_gkXSRgfENHRJBbsUvg_wlnS4_7MT89r.QkJGcDuFICv1V8uifKc_ZS0iXubFE8hcOU5BrenflBNezOtSKQtuhthwBV65snAI7AVz59hhXtcQKXI_50.xUAYn.hCFdWJ0E__hHODfhtEJixtRGwBOtndhE6uuLbkkm4XlJS1ZEE0.74RNDriXc8hvsgSWwGJeuCZXeRgaUbQ"}],"group":"cf-qaxjgmazbgfxofes","max_age":86400}, {"endpoints":[{"url":"https:\/\/csp-reporting.cloudflare.com\/cdn-cgi\/script_monitor\/report?m=tOVAZEQeCEoUwXoh9XClSwFKMTnhhhIDFsSlOOgApLw-1727761605-1.0.1.1-MxaIo3OdP8PhMUnhs9mI5KKGbiwybK3gtvE9A4zVxNCE3Eb4GLCudgpCLtPYqtd1SFYfqtJ28Nupp7WqoI0u1cS_BgXa6R67SQNa_84AnEnYEBoBSifDReh6E6b8sv_5Mc7mTih_wFtgbRi6XAE2xC0Hf4pKMFRYulBPeuOkFCYjBOVxGz3cgg_8bJ4hNvuVBKwut3VOn6YhByU4lXiXxQ"}],"group":"cf-wgnsblrtxlcywqjn","max_age":86400} |
| server: |
cloudflare |
| cf-ray: |
8cba276fbe986610-AMS |
|
