date: |
Wed, 02 Oct 2024 07:11:04 GMT |
content-type: |
text/html; charset=UTF-8 |
transfer-encoding: |
chunked |
connection: |
close |
cache-control: |
max-age=2764800, public |
content-language: |
fr |
x-content-type-options: |
nosniff |
x-frame-options: |
SAMEORIGIN |
expires: |
Sun, 19 Nov 1978 05:00:00 GMT |
vary: |
Cookie,Accept-Encoding |
content-security-policy-report-only: |
default-src 'self'; script-src 'self' maps.googleapis.com *.youtube.com *.trustarc.com www.google-analytics.com www.googletagmanager.com cdnjs.cloudflare.com js-agent.newrelic.com bam.nr-data.net unpkg.com cdn.gbqofs.com *.cdn-net.com *.accdab.net *.worldpay.com https://static.cloudflareinsights.com 'unsafe-inline' 'unsafe-eval' blob:; style-src 'self' cdnjs.cloudflare.com 'unsafe-inline' https://fonts.googleapis.com; img-src 'self' 'unsafe-inline' data: 'unsafe-eval' *.starbucks.eu maps.gstatic.com maps.googleapis.com *.trustarc.com www.googletagmanager.com www.google-analytics.com region1.google-analytics.com region1.analytics.google.com; media-src 'self'; frame-src 'self' gateway.switch.tj *.worldpay.com *.accdab.net *.trustarc.com *.youtube.com youtu.be *.starbucks.ie; font-src 'self' *.trustarc.com https://fonts.gstatic.com; connect-src 'self' maps.googleapis.com *.accdab.net *.trustarc.com bam.nr-data.net www.google-analytics.com region1.google-analytics.com region1.analytics.google.com report.starbucks.gbqofs.io stats.g.doubleclick.net https://adservice.google.com; report-uri /report-uri/enforce |
content-security-policy: |
object-src 'none'; frame-ancestors 'self'; report-uri https://www.starbucks.fr/report-uri/enforce |
x-content-security-policy-report-only: |
default-src 'self'; script-src 'self' maps.googleapis.com *.youtube.com *.trustarc.com www.google-analytics.com www.googletagmanager.com cdnjs.cloudflare.com js-agent.newrelic.com bam.nr-data.net unpkg.com cdn.gbqofs.com *.cdn-net.com *.accdab.net *.worldpay.com https://static.cloudflareinsights.com 'unsafe-inline' 'unsafe-eval' blob:; style-src 'self' cdnjs.cloudflare.com 'unsafe-inline' https://fonts.googleapis.com; img-src 'self' 'unsafe-inline' data: 'unsafe-eval' *.starbucks.eu maps.gstatic.com maps.googleapis.com *.trustarc.com www.googletagmanager.com www.google-analytics.com region1.google-analytics.com region1.analytics.google.com; media-src 'self'; frame-src 'self' gateway.switch.tj *.worldpay.com *.accdab.net *.trustarc.com *.youtube.com youtu.be *.starbucks.ie; font-src 'self' *.trustarc.com https://fonts.gstatic.com; connect-src 'self' maps.googleapis.com *.accdab.net *.trustarc.com bam.nr-data.net www.google-analytics.com region1.google-analytics.com region1.analytics.google.com report.starbucks.gbqofs.io stats.g.doubleclick.net https://adservice.google.com; report-uri /report-uri/enforce |
x-webkit-csp-report-only: |
default-src 'self'; script-src 'self' maps.googleapis.com *.youtube.com *.trustarc.com www.google-analytics.com www.googletagmanager.com cdnjs.cloudflare.com js-agent.newrelic.com bam.nr-data.net unpkg.com cdn.gbqofs.com *.cdn-net.com *.accdab.net *.worldpay.com https://static.cloudflareinsights.com 'unsafe-inline' 'unsafe-eval' blob:; style-src 'self' cdnjs.cloudflare.com 'unsafe-inline' https://fonts.googleapis.com; img-src 'self' 'unsafe-inline' data: 'unsafe-eval' *.starbucks.eu maps.gstatic.com maps.googleapis.com *.trustarc.com www.googletagmanager.com www.google-analytics.com region1.google-analytics.com region1.analytics.google.com; media-src 'self'; frame-src 'self' gateway.switch.tj *.worldpay.com *.accdab.net *.trustarc.com *.youtube.com youtu.be *.starbucks.ie; font-src 'self' *.trustarc.com https://fonts.gstatic.com; connect-src 'self' maps.googleapis.com *.accdab.net *.trustarc.com bam.nr-data.net www.google-analytics.com region1.google-analytics.com region1.analytics.google.com report.starbucks.gbqofs.io stats.g.doubleclick.net https://adservice.google.com; report-uri /report-uri/enforce |
x-xss-protection: |
0 |
strict-transport-security: |
max-age=31536000; includeSubDomains; preload |
from-origin: |
same |
referrer-policy: |
no-referrer-when-downgrade |
last-modified: |
Sun, 29 Sep 2024 02:11:46 GMT |
x-request-id: |
v-2da50524-7e08-11ef-b009-9ba32faed1aa |
x-ah-environment: |
prod |
via: |
varnish |
x-cache: |
HIT |
x-cache-hits: |
16 |
cf-cache-status: |
HIT |
age: |
35 |
server: |
cloudflare |
cf-ray: |
8cc2e05219940a70-AMS |