HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: text/html; charset=utf-8
etag: "f29d979552d955dff7c71f09ada447727437197e4a3bc4f82aed6dcff590cb8d-br"
last-modified: Thu, 08 Jun 2023 13:27:55 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Fri, 09 Jun 2023 12:17:34 GMT
x-served-by: cache-bma1657-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1686313054.177643,VS0,VE10
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 122
X-Firefox-Spdy: h2

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Jun 2023 12:17:34 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

HTTP/2 200 OK
server: openresty
date: Fri, 09 Jun 2023 11:52:31 GMT
content-type: text/html; charset=UTF-8
content-length: 30496
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2

HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 12:17:35 GMT
Server: Apache
Last-Modified: Fri, 09 Jun 2023 02:14:54 GMT
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Fri, 16 Jun 2023 12:17:35 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
ETag: "435c-5fda8ef4779e1-gzip"
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline' *.ytimg.com vimeo.com *.vimeo.com www.youtube.com www.google.com www.google.no assets.adobedtm.com sparebank1.d3.sc.omtrdc.net *.cicero.no *.sparebank1.no *.googletagmanager.com cdn.tt.omtrdc.net activitymap.adobe.com; style-src 'self' 'unsafe-inline' *.sparebank1.no www.youtube.com services-test.cicero.no services.cicero.no translate.googleapis.com; img-src 'self' *.ytimg.com secure.adnxs.com track.adform.net *.doubleclick.net assets.adobedtm.com sparebank1.d3.sc.omtrdc.net alliansesamarbeidets.tt.omtrdc.net cm.everesttech.net www.facebook.com *.sparebank1.no *.boost.ai www.google.no www.google.com *.demdex.net www.googletagmanager.com www.gstatic.com data:; connect-src 'self' *.cicero.no *.demdex.net *.omtrdc.net *.brreg.no *.sparebank1.no publish.ne.cision.com translate.googleapis.com edge.adobedc.net; font-src 'self' *.sparebank1.no services-test.cicero.no services.cicero.no data:; media-src 'self'; frame-ancestors 'self'; frame-src 'self' snnfinans.no sdk.companywebcast.com candidate.hr-manager.net ir.oms.no channel.royalcast.com www.sr-finans.no *.sparebank1.no lt.morningstar.com www.youtube.com vimeo.com *.vimeo.com assets.adobedtm.com *.demdex.net sparebank1.demdex.net www.sign.nets.eu ir.asp.manamind.com www.sb1finans.no www.snnfinans.no dbsnn.no www.googletagmanager.com *.doubleclick.net www.ident.nets.eu www.sb1fo.no www.webcruiter.no *.easycruit.com sb1mobilbank://event www.sign-preprod1.nets.eu nam11.safelinks.protection.outlook.com nordmore.pameldingssystem.no players.brightcove.net agreeable-forest-0b9a11903.1.azurestaticapps.net activitymap.adobe.com pr.globenewswire.com signant.no; report-uri /bin/logservlet
Referrer-Policy: strict-origin-when-cross-origin
Content-Length: 17267
Content-Type: font/woff2
Strict-Transport-Security: max-age=31536000
Access-Control-Allow-Origin: https://mobilbank-pm.sparebank1.no
Set-Cookie: DSESSIONID=5B5A2A9A.3EED.6483185F;domain=.sparebank1.no;path=/;Secure
cxm=2-1|ZIMYY; path=/; HttpOnly; Secure

HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 12:17:35 GMT
Server: Apache
Last-Modified: Fri, 09 Jun 2023 03:46:24 GMT
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Fri, 16 Jun 2023 12:17:35 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
ETag: "3a7a-5fdaa368bd081-gzip"
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline' *.ytimg.com vimeo.com *.vimeo.com www.youtube.com www.google.com www.google.no assets.adobedtm.com sparebank1.d3.sc.omtrdc.net *.cicero.no *.sparebank1.no *.googletagmanager.com cdn.tt.omtrdc.net activitymap.adobe.com; style-src 'self' 'unsafe-inline' *.sparebank1.no www.youtube.com services-test.cicero.no services.cicero.no translate.googleapis.com; img-src 'self' *.ytimg.com secure.adnxs.com track.adform.net *.doubleclick.net assets.adobedtm.com sparebank1.d3.sc.omtrdc.net alliansesamarbeidets.tt.omtrdc.net cm.everesttech.net www.facebook.com *.sparebank1.no *.boost.ai www.google.no www.google.com *.demdex.net www.googletagmanager.com www.gstatic.com data:; connect-src 'self' *.cicero.no *.demdex.net *.omtrdc.net *.brreg.no *.sparebank1.no publish.ne.cision.com translate.googleapis.com edge.adobedc.net; font-src 'self' *.sparebank1.no services-test.cicero.no services.cicero.no data:; media-src 'self'; frame-ancestors 'self'; frame-src 'self' snnfinans.no sdk.companywebcast.com candidate.hr-manager.net ir.oms.no channel.royalcast.com www.sr-finans.no *.sparebank1.no lt.morningstar.com www.youtube.com vimeo.com *.vimeo.com assets.adobedtm.com *.demdex.net sparebank1.demdex.net www.sign.nets.eu ir.asp.manamind.com www.sb1finans.no www.snnfinans.no dbsnn.no www.googletagmanager.com *.doubleclick.net www.ident.nets.eu www.sb1fo.no www.webcruiter.no *.easycruit.com sb1mobilbank://event www.sign-preprod1.nets.eu nam11.safelinks.protection.outlook.com nordmore.pameldingssystem.no players.brightcove.net agreeable-forest-0b9a11903.1.azurestaticapps.net activitymap.adobe.com pr.globenewswire.com signant.no; report-uri /bin/logservlet
Referrer-Policy: strict-origin-when-cross-origin
Content-Length: 14993
Content-Type: font/woff2
Strict-Transport-Security: max-age=31536000
Access-Control-Allow-Origin: https://mobilbank-pm.sparebank1.no
Set-Cookie: DSESSIONID=5B5A2A9A.8C49.6483185F;domain=.sparebank1.no;path=/;Secure
cxm=1-2|ZIMYY; path=/; HttpOnly; Secure

HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 12:17:35 GMT
Server: Apache
Last-Modified: Fri, 09 Jun 2023 03:47:36 GMT
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Fri, 16 Jun 2023 12:17:35 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
ETag: "4454-5fdaa3accfe4f-gzip"
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline' *.ytimg.com vimeo.com *.vimeo.com www.youtube.com www.google.com www.google.no assets.adobedtm.com sparebank1.d3.sc.omtrdc.net *.cicero.no *.sparebank1.no *.googletagmanager.com cdn.tt.omtrdc.net activitymap.adobe.com; style-src 'self' 'unsafe-inline' *.sparebank1.no www.youtube.com services-test.cicero.no services.cicero.no translate.googleapis.com; img-src 'self' *.ytimg.com secure.adnxs.com track.adform.net *.doubleclick.net assets.adobedtm.com sparebank1.d3.sc.omtrdc.net alliansesamarbeidets.tt.omtrdc.net cm.everesttech.net www.facebook.com *.sparebank1.no *.boost.ai www.google.no www.google.com *.demdex.net www.googletagmanager.com www.gstatic.com data:; connect-src 'self' *.cicero.no *.demdex.net *.omtrdc.net *.brreg.no *.sparebank1.no publish.ne.cision.com translate.googleapis.com edge.adobedc.net; font-src 'self' *.sparebank1.no services-test.cicero.no services.cicero.no data:; media-src 'self'; frame-ancestors 'self'; frame-src 'self' snnfinans.no sdk.companywebcast.com candidate.hr-manager.net ir.oms.no channel.royalcast.com www.sr-finans.no *.sparebank1.no lt.morningstar.com www.youtube.com vimeo.com *.vimeo.com assets.adobedtm.com *.demdex.net sparebank1.demdex.net www.sign.nets.eu ir.asp.manamind.com www.sb1finans.no www.snnfinans.no dbsnn.no www.googletagmanager.com *.doubleclick.net www.ident.nets.eu www.sb1fo.no www.webcruiter.no *.easycruit.com sb1mobilbank://event www.sign-preprod1.nets.eu nam11.safelinks.protection.outlook.com nordmore.pameldingssystem.no players.brightcove.net agreeable-forest-0b9a11903.1.azurestaticapps.net activitymap.adobe.com pr.globenewswire.com signant.no; report-uri /bin/logservlet
Referrer-Policy: strict-origin-when-cross-origin
Content-Length: 17515
Content-Type: font/woff2
Strict-Transport-Security: max-age=31536000
Access-Control-Allow-Origin: https://mobilbank-pm.sparebank1.no
Set-Cookie: DSESSIONID=5B5A2A9A.E8F4.6483185F;domain=.sparebank1.no;path=/;Secure
cxm=2-2|ZIMYY; path=/; HttpOnly; Secure

HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 12:17:35 GMT
Server: Apache
Last-Modified: Fri, 09 Jun 2023 02:15:02 GMT
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Fri, 16 Jun 2023 12:17:35 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
ETag: "88ec-5fda8efbfbb94-gzip"
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline' *.ytimg.com vimeo.com *.vimeo.com www.youtube.com www.google.com www.google.no assets.adobedtm.com sparebank1.d3.sc.omtrdc.net *.cicero.no *.sparebank1.no *.googletagmanager.com cdn.tt.omtrdc.net activitymap.adobe.com; style-src 'self' 'unsafe-inline' *.sparebank1.no www.youtube.com services-test.cicero.no services.cicero.no translate.googleapis.com; img-src 'self' *.ytimg.com secure.adnxs.com track.adform.net *.doubleclick.net assets.adobedtm.com sparebank1.d3.sc.omtrdc.net alliansesamarbeidets.tt.omtrdc.net cm.everesttech.net www.facebook.com *.sparebank1.no *.boost.ai www.google.no www.google.com *.demdex.net www.googletagmanager.com www.gstatic.com data:; connect-src 'self' *.cicero.no *.demdex.net *.omtrdc.net *.brreg.no *.sparebank1.no publish.ne.cision.com translate.googleapis.com edge.adobedc.net; font-src 'self' *.sparebank1.no services-test.cicero.no services.cicero.no data:; media-src 'self'; frame-ancestors 'self'; frame-src 'self' snnfinans.no sdk.companywebcast.com candidate.hr-manager.net ir.oms.no channel.royalcast.com www.sr-finans.no *.sparebank1.no lt.morningstar.com www.youtube.com vimeo.com *.vimeo.com assets.adobedtm.com *.demdex.net sparebank1.demdex.net www.sign.nets.eu ir.asp.manamind.com www.sb1finans.no www.snnfinans.no dbsnn.no www.googletagmanager.com *.doubleclick.net www.ident.nets.eu www.sb1fo.no www.webcruiter.no *.easycruit.com sb1mobilbank://event www.sign-preprod1.nets.eu nam11.safelinks.protection.outlook.com nordmore.pameldingssystem.no players.brightcove.net agreeable-forest-0b9a11903.1.azurestaticapps.net activitymap.adobe.com pr.globenewswire.com signant.no; report-uri /bin/logservlet
Referrer-Policy: strict-origin-when-cross-origin
Content-Length: 35080
Content-Type: font/woff2
Strict-Transport-Security: max-age=31536000
Access-Control-Allow-Origin: https://mobilbank-pm.sparebank1.no
Set-Cookie: DSESSIONID=5B5A2A9A.8EFE.6483185F;domain=.sparebank1.no;path=/;Secure
cxm=1-1|ZIMYY; path=/; HttpOnly; Secure

HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 12:17:35 GMT
Server: Apache
Last-Modified: Fri, 09 Jun 2023 02:14:54 GMT
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Fri, 16 Jun 2023 12:17:35 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
ETag: "3a9a-5fda8ef474719-gzip"
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline' *.ytimg.com vimeo.com *.vimeo.com www.youtube.com www.google.com www.google.no assets.adobedtm.com sparebank1.d3.sc.omtrdc.net *.cicero.no *.sparebank1.no *.googletagmanager.com cdn.tt.omtrdc.net activitymap.adobe.com; style-src 'self' 'unsafe-inline' *.sparebank1.no www.youtube.com services-test.cicero.no services.cicero.no translate.googleapis.com; img-src 'self' *.ytimg.com secure.adnxs.com track.adform.net *.doubleclick.net assets.adobedtm.com sparebank1.d3.sc.omtrdc.net alliansesamarbeidets.tt.omtrdc.net cm.everesttech.net www.facebook.com *.sparebank1.no *.boost.ai www.google.no www.google.com *.demdex.net www.googletagmanager.com www.gstatic.com data:; connect-src 'self' *.cicero.no *.demdex.net *.omtrdc.net *.brreg.no *.sparebank1.no publish.ne.cision.com translate.googleapis.com edge.adobedc.net; font-src 'self' *.sparebank1.no services-test.cicero.no services.cicero.no data:; media-src 'self'; frame-ancestors 'self'; frame-src 'self' snnfinans.no sdk.companywebcast.com candidate.hr-manager.net ir.oms.no channel.royalcast.com www.sr-finans.no *.sparebank1.no lt.morningstar.com www.youtube.com vimeo.com *.vimeo.com assets.adobedtm.com *.demdex.net sparebank1.demdex.net www.sign.nets.eu ir.asp.manamind.com www.sb1finans.no www.snnfinans.no dbsnn.no www.googletagmanager.com *.doubleclick.net www.ident.nets.eu www.sb1fo.no www.webcruiter.no *.easycruit.com sb1mobilbank://event www.sign-preprod1.nets.eu nam11.safelinks.protection.outlook.com nordmore.pameldingssystem.no players.brightcove.net agreeable-forest-0b9a11903.1.azurestaticapps.net activitymap.adobe.com pr.globenewswire.com signant.no; report-uri /bin/logservlet
Referrer-Policy: strict-origin-when-cross-origin
Content-Length: 15025
Content-Type: font/woff2
Strict-Transport-Security: max-age=31536000
Access-Control-Allow-Origin: https://mobilbank-pm.sparebank1.no
Set-Cookie: DSESSIONID=5B5A2A9A.E616.6483185F;domain=.sparebank1.no;path=/;Secure
cxm=2-1|ZIMYY; path=/; HttpOnly; Secure

HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 12:17:35 GMT
Server: Apache
Last-Modified: Fri, 09 Jun 2023 02:15:02 GMT
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Fri, 16 Jun 2023 12:17:35 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
ETag: "4358-5fda8efbfa80c-gzip"
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline' *.ytimg.com vimeo.com *.vimeo.com www.youtube.com www.google.com www.google.no assets.adobedtm.com sparebank1.d3.sc.omtrdc.net *.cicero.no *.sparebank1.no *.googletagmanager.com cdn.tt.omtrdc.net activitymap.adobe.com; style-src 'self' 'unsafe-inline' *.sparebank1.no www.youtube.com services-test.cicero.no services.cicero.no translate.googleapis.com; img-src 'self' *.ytimg.com secure.adnxs.com track.adform.net *.doubleclick.net assets.adobedtm.com sparebank1.d3.sc.omtrdc.net alliansesamarbeidets.tt.omtrdc.net cm.everesttech.net www.facebook.com *.sparebank1.no *.boost.ai www.google.no www.google.com *.demdex.net www.googletagmanager.com www.gstatic.com data:; connect-src 'self' *.cicero.no *.demdex.net *.omtrdc.net *.brreg.no *.sparebank1.no publish.ne.cision.com translate.googleapis.com edge.adobedc.net; font-src 'self' *.sparebank1.no services-test.cicero.no services.cicero.no data:; media-src 'self'; frame-ancestors 'self'; frame-src 'self' snnfinans.no sdk.companywebcast.com candidate.hr-manager.net ir.oms.no channel.royalcast.com www.sr-finans.no *.sparebank1.no lt.morningstar.com www.youtube.com vimeo.com *.vimeo.com assets.adobedtm.com *.demdex.net sparebank1.demdex.net www.sign.nets.eu ir.asp.manamind.com www.sb1finans.no www.snnfinans.no dbsnn.no www.googletagmanager.com *.doubleclick.net www.ident.nets.eu www.sb1fo.no www.webcruiter.no *.easycruit.com sb1mobilbank://event www.sign-preprod1.nets.eu nam11.safelinks.protection.outlook.com nordmore.pameldingssystem.no players.brightcove.net agreeable-forest-0b9a11903.1.azurestaticapps.net activitymap.adobe.com pr.globenewswire.com signant.no; report-uri /bin/logservlet
Referrer-Policy: strict-origin-when-cross-origin
Content-Length: 17263
Content-Type: font/woff2
Strict-Transport-Security: max-age=31536000
Access-Control-Allow-Origin: https://mobilbank-pm.sparebank1.no
Set-Cookie: DSESSIONID=5B5A2A9A.233D.6483185F;domain=.sparebank1.no;path=/;Secure
cxm=1-1|ZIMYY; path=/; HttpOnly; Secure

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Jun 2023 12:17:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 12:17:35 GMT
Server: Apache
Last-Modified: Fri, 09 Jun 2023 02:14:54 GMT
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Fri, 16 Jun 2023 12:17:35 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
ETag: "7e0c-5fda8ef47bc49-gzip"
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline' *.ytimg.com vimeo.com *.vimeo.com www.youtube.com www.google.com www.google.no assets.adobedtm.com sparebank1.d3.sc.omtrdc.net *.cicero.no *.sparebank1.no *.googletagmanager.com cdn.tt.omtrdc.net activitymap.adobe.com; style-src 'self' 'unsafe-inline' *.sparebank1.no www.youtube.com services-test.cicero.no services.cicero.no translate.googleapis.com; img-src 'self' *.ytimg.com secure.adnxs.com track.adform.net *.doubleclick.net assets.adobedtm.com sparebank1.d3.sc.omtrdc.net alliansesamarbeidets.tt.omtrdc.net cm.everesttech.net www.facebook.com *.sparebank1.no *.boost.ai www.google.no www.google.com *.demdex.net www.googletagmanager.com www.gstatic.com data:; connect-src 'self' *.cicero.no *.demdex.net *.omtrdc.net *.brreg.no *.sparebank1.no publish.ne.cision.com translate.googleapis.com edge.adobedc.net; font-src 'self' *.sparebank1.no services-test.cicero.no services.cicero.no data:; media-src 'self'; frame-ancestors 'self'; frame-src 'self' snnfinans.no sdk.companywebcast.com candidate.hr-manager.net ir.oms.no channel.royalcast.com www.sr-finans.no *.sparebank1.no lt.morningstar.com www.youtube.com vimeo.com *.vimeo.com assets.adobedtm.com *.demdex.net sparebank1.demdex.net www.sign.nets.eu ir.asp.manamind.com www.sb1finans.no www.snnfinans.no dbsnn.no www.googletagmanager.com *.doubleclick.net www.ident.nets.eu www.sb1fo.no www.webcruiter.no *.easycruit.com sb1mobilbank://event www.sign-preprod1.nets.eu nam11.safelinks.protection.outlook.com nordmore.pameldingssystem.no players.brightcove.net agreeable-forest-0b9a11903.1.azurestaticapps.net activitymap.adobe.com pr.globenewswire.com signant.no; report-uri /bin/logservlet
Referrer-Policy: strict-origin-when-cross-origin
Content-Length: 32291
Content-Type: font/woff2
Strict-Transport-Security: max-age=31536000
Access-Control-Allow-Origin: https://mobilbank-pm.sparebank1.no
Set-Cookie: DSESSIONID=5B5A2A9A.8C49.6483185F;domain=.sparebank1.no;path=/;Secure
cxm=2-1|ZIMYY; path=/; HttpOnly; Secure

HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 12:17:35 GMT
Server: Apache
Last-Modified: Fri, 09 Jun 2023 03:46:24 GMT
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Fri, 16 Jun 2023 12:17:35 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
ETag: "91fc-5fdaa368b6708-gzip"
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline' *.ytimg.com vimeo.com *.vimeo.com www.youtube.com www.google.com www.google.no assets.adobedtm.com sparebank1.d3.sc.omtrdc.net *.cicero.no *.sparebank1.no *.googletagmanager.com cdn.tt.omtrdc.net activitymap.adobe.com; style-src 'self' 'unsafe-inline' *.sparebank1.no www.youtube.com services-test.cicero.no services.cicero.no translate.googleapis.com; img-src 'self' *.ytimg.com secure.adnxs.com track.adform.net *.doubleclick.net assets.adobedtm.com sparebank1.d3.sc.omtrdc.net alliansesamarbeidets.tt.omtrdc.net cm.everesttech.net www.facebook.com *.sparebank1.no *.boost.ai www.google.no www.google.com *.demdex.net www.googletagmanager.com www.gstatic.com data:; connect-src 'self' *.cicero.no *.demdex.net *.omtrdc.net *.brreg.no *.sparebank1.no publish.ne.cision.com translate.googleapis.com edge.adobedc.net; font-src 'self' *.sparebank1.no services-test.cicero.no services.cicero.no data:; media-src 'self'; frame-ancestors 'self'; frame-src 'self' snnfinans.no sdk.companywebcast.com candidate.hr-manager.net ir.oms.no channel.royalcast.com www.sr-finans.no *.sparebank1.no lt.morningstar.com www.youtube.com vimeo.com *.vimeo.com assets.adobedtm.com *.demdex.net sparebank1.demdex.net www.sign.nets.eu ir.asp.manamind.com www.sb1finans.no www.snnfinans.no dbsnn.no www.googletagmanager.com *.doubleclick.net www.ident.nets.eu www.sb1fo.no www.webcruiter.no *.easycruit.com sb1mobilbank://event www.sign-preprod1.nets.eu nam11.safelinks.protection.outlook.com nordmore.pameldingssystem.no players.brightcove.net agreeable-forest-0b9a11903.1.azurestaticapps.net activitymap.adobe.com pr.globenewswire.com signant.no; report-uri /bin/logservlet
Referrer-Policy: strict-origin-when-cross-origin
Content-Length: 37400
Content-Type: font/woff2
Strict-Transport-Security: max-age=31536000
Access-Control-Allow-Origin: https://mobilbank-pm.sparebank1.no
Set-Cookie: DSESSIONID=5B5A2A9A.3EED.6483185F;domain=.sparebank1.no;path=/;Secure
cxm=1-2|ZIMYY; path=/; HttpOnly; Secure

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Jun 2023 12:17:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Jun 2023 12:17:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 12:17:35 GMT
Server: Apache
Last-Modified: Fri, 09 Jun 2023 03:46:24 GMT
Accept-Ranges: bytes
Cache-Control: max-age=300, must-revalidate
Expires: Fri, 09 Jun 2023 12:22:35 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
ETag: "59387-5fdaa368befc1-gzip"
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline' *.ytimg.com vimeo.com *.vimeo.com www.youtube.com www.google.com www.google.no assets.adobedtm.com sparebank1.d3.sc.omtrdc.net *.cicero.no *.sparebank1.no *.googletagmanager.com cdn.tt.omtrdc.net activitymap.adobe.com; style-src 'self' 'unsafe-inline' *.sparebank1.no www.youtube.com services-test.cicero.no services.cicero.no translate.googleapis.com; img-src 'self' *.ytimg.com secure.adnxs.com track.adform.net *.doubleclick.net assets.adobedtm.com sparebank1.d3.sc.omtrdc.net alliansesamarbeidets.tt.omtrdc.net cm.everesttech.net www.facebook.com *.sparebank1.no *.boost.ai www.google.no www.google.com *.demdex.net www.googletagmanager.com www.gstatic.com data:; connect-src 'self' *.cicero.no *.demdex.net *.omtrdc.net *.brreg.no *.sparebank1.no publish.ne.cision.com translate.googleapis.com edge.adobedc.net; font-src 'self' *.sparebank1.no services-test.cicero.no services.cicero.no data:; media-src 'self'; frame-ancestors 'self'; frame-src 'self' snnfinans.no sdk.companywebcast.com candidate.hr-manager.net ir.oms.no channel.royalcast.com www.sr-finans.no *.sparebank1.no lt.morningstar.com www.youtube.com vimeo.com *.vimeo.com assets.adobedtm.com *.demdex.net sparebank1.demdex.net www.sign.nets.eu ir.asp.manamind.com www.sb1finans.no www.snnfinans.no dbsnn.no www.googletagmanager.com *.doubleclick.net www.ident.nets.eu www.sb1fo.no www.webcruiter.no *.easycruit.com sb1mobilbank://event www.sign-preprod1.nets.eu nam11.safelinks.protection.outlook.com nordmore.pameldingssystem.no players.brightcove.net agreeable-forest-0b9a11903.1.azurestaticapps.net activitymap.adobe.com pr.globenewswire.com signant.no; report-uri /bin/logservlet
Referrer-Policy: strict-origin-when-cross-origin
Content-Length: 55415
Content-Type: text/css
Strict-Transport-Security: max-age=31536000
Access-Control-Allow-Origin: https://mobilbank-pm.sparebank1.no
Set-Cookie: DSESSIONID=5B5A2A9A.BCB8.6483185F;domain=.sparebank1.no;path=/;Secure
cxm=1-2|ZIMYY; path=/; HttpOnly; Secure

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Jun 2023 12:17:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 77658
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Jun 2023 13:23:40 GMT
expires: Thu, 06 Jun 2024 13:23:40 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 10 Nov 2021 06:12:52 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 168836
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

HTTP/1.1 200 
date: Fri, 09 Jun 2023 12:17:36 GMT
content-security-policy: default-src 'none'; img-src 'self' data: https://csfe.bankid.no https://statistikk.sparebank1.no; base-uri 'self'; font-src 'self' *.sparebank1.no data:; media-src 'self'; style-src 'self' 'unsafe-inline' 'report-sample' https://csfe.bankid.no https://services.bankid.no; object-src 'none'; script-src 'self' 'unsafe-inline' blob: *.sparebank1.no 'strict-dynamic' 'nonce-P8FahfPr6bNABNmzeKjDIw' 'report-sample' 'unsafe-eval' https://csfe.bankid.no https://services.bankid.no https://www.sparebank1.no; report-uri https://www.sparebank1.no/logservlet/csp/enforce; form-action *.sparebank1.no; connect-src 'self' www.sparebank1.no *.demdex.net https://www.sparebank1.no; upgrade-insecure-requests; child-src https://csfe.bankid.no; frame-src https://csfe.bankid.no; frame-ancestors https://*.sparebank1.no https://*.dnbforsikring.no https://*.fremtind.no https://*.bnbank.no https://*.sbm.no https://*.lofavor.no https://*.coop.no
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers,Accept-Encoding, User-Agent
last-modified: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=60, must-revalidate, public
content-type: text/css
accept-ranges: bytes
etag: "0433304b2a68e6aef8923d6f9c1d77f2f--gzip"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
x-frame-options: DENY
content-encoding: gzip
x-envoy-upstream-service-time: 11
server: istio-envoy
transfer-encoding: chunked
Strict-Transport-Security: max-age=31536000
set-cookie: csrf=-BLjSkNho6q5fp6zgF_TTGbBFGKzkuA3FksWXme3iSw; Domain=sparebank1.no; Path=/; Secure; HttpOnly; SameSite=Strict
DSESSIONID=5B5A2A9A.94FF.6483185F;path=/;Secure

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 77892
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Jun 2023 13:48:52 GMT
expires: Fri, 07 Jun 2024 13:48:52 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Nov 2021 22:12:38 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 80924
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 3632
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 09 Jun 2023 11:20:07 GMT
expires: Fri, 09 Jun 2023 12:20:07 GMT
cache-control: public, max-age=3600
age: 3449
last-modified: Mon, 09 Jan 2023 20:58:00 GMT
content-type: text/css
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Jun 2023 12:17:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

HTTP/2 200 OK
date: Thu, 08 Jun 2023 16:56:48 GMT
content-type: image/png
content-length: 27569
content-disposition: inline;filename*=UTF-8''SpareBank1.svg.png
etag: e301fd2f6df0ff6e53d31ac049462e29
last-modified: Sat, 26 Feb 2022 18:48:03 GMT
server: ATS/9.1.4
age: 69648
x-cache: cp3061 hit, cp3065 miss
x-cache-status: hit-local
server-timing: cache;desc="hit-local", host;desc="cp3065"
strict-transport-security: max-age=106384710; includeSubDomains; preload
report-to: { "group": "wm_nel", "max_age": 604800, "endpoints": [{ "url": "https://intake-logging.wikimedia.org/v1/events?stream=w3c.reportingapi.network_error&schema_uri=/w3c/reportingapi/network_error/1.0.0" }] }
nel: { "report_to": "wm_nel", "max_age": 604800, "failure_fraction": 0.05, "success_fraction": 0.0}
x-client-ip: 91.90.42.154
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-expose-headers: Age, Date, Content-Length, Content-Range, X-Content-Duration, X-Cache
timing-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Jun 2023 12:17:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 09 Jun 2023 12:17:36 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+153; expires=Sun, 08-Jun-2025 12:17:36 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 4205
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Jun 2023 21:45:57 GMT
expires: Fri, 07 Jun 2024 21:45:57 GMT
cache-control: public, max-age=31536000
age: 52299
last-modified: Sun, 12 Mar 2023 00:11:57 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Jun 2023 12:17:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 09 Jun 2023 12:17:36 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+975; expires=Sun, 08-Jun-2025 12:17:36 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

HTTP/1.1 200 
date: Fri, 09 Jun 2023 12:17:36 GMT
content-security-policy: default-src 'none'; img-src 'self' data: https://csfe.bankid.no https://statistikk.sparebank1.no; base-uri 'self'; font-src 'self' *.sparebank1.no data:; media-src 'self'; style-src 'self' 'unsafe-inline' 'report-sample' https://csfe.bankid.no https://services.bankid.no; object-src 'none'; script-src 'self' 'unsafe-inline' blob: *.sparebank1.no 'strict-dynamic' 'nonce-ZLx4qMEUQnOlE9EJKNN/lQ' 'report-sample' 'unsafe-eval' https://csfe.bankid.no https://services.bankid.no https://www.sparebank1.no; report-uri https://www.sparebank1.no/logservlet/csp/enforce; form-action *.sparebank1.no; connect-src 'self' www.sparebank1.no *.demdex.net https://www.sparebank1.no; upgrade-insecure-requests; child-src https://csfe.bankid.no; frame-src https://csfe.bankid.no; frame-ancestors https://*.sparebank1.no https://*.dnbforsikring.no https://*.fremtind.no https://*.bnbank.no https://*.sbm.no https://*.lofavor.no https://*.coop.no
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
last-modified: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=60, must-revalidate, public
content-type: application/font-woff2
accept-ranges: bytes
etag: "067e629cc89c5a988984658425239967a"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
x-frame-options: ALLOW-FROM https://login.sparebank1.no/
content-length: 32268
x-envoy-upstream-service-time: 6
server: istio-envoy
Strict-Transport-Security: max-age=31536000
set-cookie: csrf=2t_Girxh-42QZNvIzF1Rn_kApbNIut-A4P7_fRdlHTo; Domain=sparebank1.no; Path=/; Secure; HttpOnly; SameSite=Strict
DSESSIONID=5B5A2A9A.8EC5.64831860;path=/;Secure

HTTP/1.1 200 
date: Fri, 09 Jun 2023 12:17:36 GMT
content-security-policy: default-src 'none'; img-src 'self' data: https://csfe.bankid.no https://statistikk.sparebank1.no; base-uri 'self'; font-src 'self' *.sparebank1.no data:; media-src 'self'; style-src 'self' 'unsafe-inline' 'report-sample' https://csfe.bankid.no https://services.bankid.no; object-src 'none'; script-src 'self' 'unsafe-inline' blob: *.sparebank1.no 'strict-dynamic' 'nonce-f1P2+dEX1g1o4vZJWkcdYg' 'report-sample' 'unsafe-eval' https://csfe.bankid.no https://services.bankid.no https://www.sparebank1.no; report-uri https://www.sparebank1.no/logservlet/csp/enforce; form-action *.sparebank1.no; connect-src 'self' www.sparebank1.no *.demdex.net https://www.sparebank1.no; upgrade-insecure-requests; child-src https://csfe.bankid.no; frame-src https://csfe.bankid.no; frame-ancestors https://*.sparebank1.no https://*.dnbforsikring.no https://*.fremtind.no https://*.bnbank.no https://*.sbm.no https://*.lofavor.no https://*.coop.no
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
last-modified: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=60, must-revalidate, public
content-type: application/font-woff2
accept-ranges: bytes
etag: "079c94508d6f926bd4786b062863ec94b"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
x-frame-options: ALLOW-FROM https://login.sparebank1.no/
content-length: 37372
x-envoy-upstream-service-time: 8
server: istio-envoy
Strict-Transport-Security: max-age=31536000
set-cookie: csrf=ku7zGxUuCeXpnQ9dktgY43ucTLiqDw6k8-o9MQ4WJnU; Domain=sparebank1.no; Path=/; Secure; HttpOnly; SameSite=Strict
DSESSIONID=5B5A2A9A.141D.64831860;path=/;Secure

HTTP/1.1 200 
date: Fri, 09 Jun 2023 12:17:36 GMT
content-security-policy: default-src 'none'; img-src 'self' data: https://csfe.bankid.no https://statistikk.sparebank1.no; base-uri 'self'; font-src 'self' *.sparebank1.no data:; media-src 'self'; style-src 'self' 'unsafe-inline' 'report-sample' https://csfe.bankid.no https://services.bankid.no; object-src 'none'; script-src 'self' 'unsafe-inline' blob: *.sparebank1.no 'strict-dynamic' 'nonce-AuX4RZgG6Xua51cJYF2Ijw' 'report-sample' 'unsafe-eval' https://csfe.bankid.no https://services.bankid.no https://www.sparebank1.no; report-uri https://www.sparebank1.no/logservlet/csp/enforce; form-action *.sparebank1.no; connect-src 'self' www.sparebank1.no *.demdex.net https://www.sparebank1.no; upgrade-insecure-requests; child-src https://csfe.bankid.no; frame-src https://csfe.bankid.no; frame-ancestors https://*.sparebank1.no https://*.dnbforsikring.no https://*.fremtind.no https://*.bnbank.no https://*.sbm.no https://*.lofavor.no https://*.coop.no
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
last-modified: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=60, must-revalidate, public
content-type: application/font-woff2
accept-ranges: bytes
etag: "085e620fd649baca0ff4080d50d203cb7"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
x-frame-options: ALLOW-FROM https://login.sparebank1.no/
content-length: 35052
x-envoy-upstream-service-time: 10
server: istio-envoy
Strict-Transport-Security: max-age=31536000
set-cookie: csrf=UydNEymJkJprLyxWKA7GdWTJI2qSAmkgkg7im8Vv4Ms; Domain=sparebank1.no; Path=/; Secure; HttpOnly; SameSite=Strict
DSESSIONID=5B5A2A9A.0DEA.64831860;path=/;Secure

HTTP/1.1 200 
date: Fri, 09 Jun 2023 12:17:36 GMT
content-security-policy: default-src 'none'; img-src 'self' data: https://csfe.bankid.no https://statistikk.sparebank1.no; base-uri 'self'; font-src 'self' *.sparebank1.no data:; media-src 'self'; style-src 'self' 'unsafe-inline' 'report-sample' https://csfe.bankid.no https://services.bankid.no; object-src 'none'; script-src 'self' 'unsafe-inline' blob: *.sparebank1.no 'strict-dynamic' 'nonce-+Nw9btJSgHmGUpRaOhILvA' 'report-sample' 'unsafe-eval' https://csfe.bankid.no https://services.bankid.no https://www.sparebank1.no; report-uri https://www.sparebank1.no/logservlet/csp/enforce; form-action *.sparebank1.no; connect-src 'self' www.sparebank1.no *.demdex.net https://www.sparebank1.no; upgrade-insecure-requests; child-src https://csfe.bankid.no; frame-src https://csfe.bankid.no; frame-ancestors https://*.sparebank1.no https://*.dnbforsikring.no https://*.fremtind.no https://*.bnbank.no https://*.sbm.no https://*.lofavor.no https://*.coop.no
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
last-modified: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=60, must-revalidate, public
content-type: application/font-woff
accept-ranges: bytes
etag: "0ec68fe1ce2151dfc5b8da9111dc56534"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
x-frame-options: ALLOW-FROM https://login.sparebank1.no/
content-length: 35500
x-envoy-upstream-service-time: 4
server: istio-envoy
Strict-Transport-Security: max-age=31536000
set-cookie: csrf=6euWm_w7OvLWW7n5xdYCPYHug0DVnVgPtMFplCmJG_0; Domain=sparebank1.no; Path=/; Secure; HttpOnly; SameSite=Strict
DSESSIONID=5B5A2A9A.141D.64831860;path=/;Secure

HTTP/1.1 200 
date: Fri, 09 Jun 2023 12:17:36 GMT
content-security-policy: default-src 'none'; img-src 'self' data: https://csfe.bankid.no https://statistikk.sparebank1.no; base-uri 'self'; font-src 'self' *.sparebank1.no data:; media-src 'self'; style-src 'self' 'unsafe-inline' 'report-sample' https://csfe.bankid.no https://services.bankid.no; object-src 'none'; script-src 'self' 'unsafe-inline' blob: *.sparebank1.no 'strict-dynamic' 'nonce-MJ+q97F1Xc5O7m3H6Mq6Fg' 'report-sample' 'unsafe-eval' https://csfe.bankid.no https://services.bankid.no https://www.sparebank1.no; report-uri https://www.sparebank1.no/logservlet/csp/enforce; form-action *.sparebank1.no; connect-src 'self' www.sparebank1.no *.demdex.net https://www.sparebank1.no; upgrade-insecure-requests; child-src https://csfe.bankid.no; frame-src https://csfe.bankid.no; frame-ancestors https://*.sparebank1.no https://*.dnbforsikring.no https://*.fremtind.no https://*.bnbank.no https://*.sbm.no https://*.lofavor.no https://*.coop.no
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
last-modified: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=60, must-revalidate, public
content-type: application/font-woff
accept-ranges: bytes
etag: "02d74c970cd8306b52205de70489e9e42"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
x-frame-options: ALLOW-FROM https://login.sparebank1.no/
content-length: 43132
x-envoy-upstream-service-time: 4
server: istio-envoy
Strict-Transport-Security: max-age=31536000
set-cookie: csrf=cQBxS5xiRss24A2NgxuWC3fCpaVNKleFSbyFEVqyjQU; Domain=sparebank1.no; Path=/; Secure; HttpOnly; SameSite=Strict
DSESSIONID=5B5A2A9A.8EC5.64831860;path=/;Secure

HTTP/1.1 200 
date: Fri, 09 Jun 2023 12:17:36 GMT
content-security-policy: default-src 'none'; img-src 'self' data: https://csfe.bankid.no https://statistikk.sparebank1.no; base-uri 'self'; font-src 'self' *.sparebank1.no data:; media-src 'self'; style-src 'self' 'unsafe-inline' 'report-sample' https://csfe.bankid.no https://services.bankid.no; object-src 'none'; script-src 'self' 'unsafe-inline' blob: *.sparebank1.no 'strict-dynamic' 'nonce-HWuJvErlfSrX7aGTw0GebQ' 'report-sample' 'unsafe-eval' https://csfe.bankid.no https://services.bankid.no https://www.sparebank1.no; report-uri https://www.sparebank1.no/logservlet/csp/enforce; form-action *.sparebank1.no; connect-src 'self' www.sparebank1.no *.demdex.net https://www.sparebank1.no; upgrade-insecure-requests; child-src https://csfe.bankid.no; frame-src https://csfe.bankid.no; frame-ancestors https://*.sparebank1.no https://*.dnbforsikring.no https://*.fremtind.no https://*.bnbank.no https://*.sbm.no https://*.lofavor.no https://*.coop.no
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
last-modified: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=60, must-revalidate, public
content-type: application/font-woff
accept-ranges: bytes
etag: "05dd929d573a9ffcca4f05ffc2dfa4cc3"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
x-frame-options: ALLOW-FROM https://login.sparebank1.no/
content-length: 46408
x-envoy-upstream-service-time: 5
server: istio-envoy
Strict-Transport-Security: max-age=31536000
set-cookie: csrf=QfJ2aBk1Qe7hm6pv7VdL1BhA7aAk5uS8dGhfQkybgVc; Domain=sparebank1.no; Path=/; Secure; HttpOnly; SameSite=Strict
DSESSIONID=5B5A2A9A.0DEA.64831860;path=/;Secure

HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 12:17:36 GMT
Server: Apache
Last-Modified: Fri, 09 Jun 2023 05:48:28 GMT
Accept-Ranges: bytes
Content-Length: 35500
Cache-Control: max-age=604800
Expires: Fri, 16 Jun 2023 12:17:36 GMT
Vary: Accept-Encoding,User-Agent
ETag: "8aac-5fdabeb107893-gzip"
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline' *.ytimg.com vimeo.com *.vimeo.com www.youtube.com www.google.com www.google.no assets.adobedtm.com sparebank1.d3.sc.omtrdc.net *.cicero.no *.sparebank1.no *.googletagmanager.com cdn.tt.omtrdc.net activitymap.adobe.com; style-src 'self' 'unsafe-inline' *.sparebank1.no www.youtube.com services-test.cicero.no services.cicero.no translate.googleapis.com; img-src 'self' *.ytimg.com secure.adnxs.com track.adform.net *.doubleclick.net assets.adobedtm.com sparebank1.d3.sc.omtrdc.net alliansesamarbeidets.tt.omtrdc.net cm.everesttech.net www.facebook.com *.sparebank1.no *.boost.ai www.google.no www.google.com *.demdex.net www.googletagmanager.com www.gstatic.com data:; connect-src 'self' *.cicero.no *.demdex.net *.omtrdc.net *.brreg.no *.sparebank1.no publish.ne.cision.com translate.googleapis.com edge.adobedc.net; font-src 'self' *.sparebank1.no services-test.cicero.no services.cicero.no data:; media-src 'self'; frame-ancestors 'self'; frame-src 'self' snnfinans.no sdk.companywebcast.com candidate.hr-manager.net ir.oms.no channel.royalcast.com www.sr-finans.no *.sparebank1.no lt.morningstar.com www.youtube.com vimeo.com *.vimeo.com assets.adobedtm.com *.demdex.net sparebank1.demdex.net www.sign.nets.eu ir.asp.manamind.com www.sb1finans.no www.snnfinans.no dbsnn.no www.googletagmanager.com *.doubleclick.net www.ident.nets.eu www.sb1fo.no www.webcruiter.no *.easycruit.com sb1mobilbank://event www.sign-preprod1.nets.eu nam11.safelinks.protection.outlook.com nordmore.pameldingssystem.no players.brightcove.net agreeable-forest-0b9a11903.1.azurestaticapps.net activitymap.adobe.com pr.globenewswire.com signant.no; report-uri /bin/logservlet
Referrer-Policy: strict-origin-when-cross-origin
Content-Type: font/woff
Strict-Transport-Security: max-age=31536000
Access-Control-Allow-Origin: https://mobilbank-pm.sparebank1.no
Set-Cookie: DSESSIONID=5B5A2A9A.3EED.6483185F;domain=.sparebank1.no;path=/;Secure
cxm=2-2|ZIMYY; path=/; HttpOnly; Secure

HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 12:17:36 GMT
Server: Apache
Last-Modified: Fri, 09 Jun 2023 04:23:24 GMT
Accept-Ranges: bytes
Content-Length: 46408
Cache-Control: max-age=604800
Expires: Fri, 16 Jun 2023 12:17:36 GMT
Vary: Accept-Encoding,User-Agent
ETag: "b548-5fdaabadd84a3-gzip"
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline' *.ytimg.com vimeo.com *.vimeo.com www.youtube.com www.google.com www.google.no assets.adobedtm.com sparebank1.d3.sc.omtrdc.net *.cicero.no *.sparebank1.no *.googletagmanager.com cdn.tt.omtrdc.net activitymap.adobe.com; style-src 'self' 'unsafe-inline' *.sparebank1.no www.youtube.com services-test.cicero.no services.cicero.no translate.googleapis.com; img-src 'self' *.ytimg.com secure.adnxs.com track.adform.net *.doubleclick.net assets.adobedtm.com sparebank1.d3.sc.omtrdc.net alliansesamarbeidets.tt.omtrdc.net cm.everesttech.net www.facebook.com *.sparebank1.no *.boost.ai www.google.no www.google.com *.demdex.net www.googletagmanager.com www.gstatic.com data:; connect-src 'self' *.cicero.no *.demdex.net *.omtrdc.net *.brreg.no *.sparebank1.no publish.ne.cision.com translate.googleapis.com edge.adobedc.net; font-src 'self' *.sparebank1.no services-test.cicero.no services.cicero.no data:; media-src 'self'; frame-ancestors 'self'; frame-src 'self' snnfinans.no sdk.companywebcast.com candidate.hr-manager.net ir.oms.no channel.royalcast.com www.sr-finans.no *.sparebank1.no lt.morningstar.com www.youtube.com vimeo.com *.vimeo.com assets.adobedtm.com *.demdex.net sparebank1.demdex.net www.sign.nets.eu ir.asp.manamind.com www.sb1finans.no www.snnfinans.no dbsnn.no www.googletagmanager.com *.doubleclick.net www.ident.nets.eu www.sb1fo.no www.webcruiter.no *.easycruit.com sb1mobilbank://event www.sign-preprod1.nets.eu nam11.safelinks.protection.outlook.com nordmore.pameldingssystem.no players.brightcove.net agreeable-forest-0b9a11903.1.azurestaticapps.net activitymap.adobe.com pr.globenewswire.com signant.no; report-uri /bin/logservlet
Referrer-Policy: strict-origin-when-cross-origin
Content-Type: font/woff
Strict-Transport-Security: max-age=31536000
Access-Control-Allow-Origin: https://mobilbank-pm.sparebank1.no
Set-Cookie: DSESSIONID=5B5A2A9A.3EED.64831860;domain=.sparebank1.no;path=/;Secure
cxm=1-2|ZIMYY; path=/; HttpOnly; Secure

HTTP/2 404 Not Found
server: openresty
date: Fri, 09 Jun 2023 11:52:32 GMT
content-type: text/html; charset=iso-8859-1
content-length: 421
X-Firefox-Spdy: h2

HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 846
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 02 Jun 2023 12:24:44 GMT
expires: Sat, 01 Jun 2024 12:24:44 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
vary: Origin
age: 604372
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1842
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 09 Jun 2023 09:33:23 GMT
expires: Sat, 08 Jun 2024 09:33:23 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
vary: Origin
age: 9853
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 12:17:36 GMT
Server: Apache
Last-Modified: Fri, 09 Jun 2023 02:16:53 GMT
Accept-Ranges: bytes
Content-Length: 15086
Cache-Control: max-age=604800
Expires: Fri, 16 Jun 2023 12:17:36 GMT
Vary: User-Agent
ETag: "3aee-5fda8f6682bcd-gzip"
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline' *.ytimg.com vimeo.com *.vimeo.com www.youtube.com www.google.com www.google.no assets.adobedtm.com sparebank1.d3.sc.omtrdc.net *.cicero.no *.sparebank1.no *.googletagmanager.com cdn.tt.omtrdc.net activitymap.adobe.com; style-src 'self' 'unsafe-inline' *.sparebank1.no www.youtube.com services-test.cicero.no services.cicero.no translate.googleapis.com; img-src 'self' *.ytimg.com secure.adnxs.com track.adform.net *.doubleclick.net assets.adobedtm.com sparebank1.d3.sc.omtrdc.net alliansesamarbeidets.tt.omtrdc.net cm.everesttech.net www.facebook.com *.sparebank1.no *.boost.ai www.google.no www.google.com *.demdex.net www.googletagmanager.com www.gstatic.com data:; connect-src 'self' *.cicero.no *.demdex.net *.omtrdc.net *.brreg.no *.sparebank1.no publish.ne.cision.com translate.googleapis.com edge.adobedc.net; font-src 'self' *.sparebank1.no services-test.cicero.no services.cicero.no data:; media-src 'self'; frame-ancestors 'self'; frame-src 'self' snnfinans.no sdk.companywebcast.com candidate.hr-manager.net ir.oms.no channel.royalcast.com www.sr-finans.no *.sparebank1.no lt.morningstar.com www.youtube.com vimeo.com *.vimeo.com assets.adobedtm.com *.demdex.net sparebank1.demdex.net www.sign.nets.eu ir.asp.manamind.com www.sb1finans.no www.snnfinans.no dbsnn.no www.googletagmanager.com *.doubleclick.net www.ident.nets.eu www.sb1fo.no www.webcruiter.no *.easycruit.com sb1mobilbank://event www.sign-preprod1.nets.eu nam11.safelinks.protection.outlook.com nordmore.pameldingssystem.no players.brightcove.net agreeable-forest-0b9a11903.1.azurestaticapps.net activitymap.adobe.com pr.globenewswire.com signant.no; report-uri /bin/logservlet
Referrer-Policy: strict-origin-when-cross-origin
Content-Type: image/png
Strict-Transport-Security: max-age=31536000
Access-Control-Allow-Origin: https://mobilbank-pm.sparebank1.no
Set-Cookie: DSESSIONID=5B5A2A9A.BCB8.6483185F;domain=.sparebank1.no;path=/;Secure
cxm=2-1|ZIMYY; path=/; HttpOnly; Secure

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 76070
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Jun 2023 17:40:37 GMT
expires: Fri, 07 Jun 2024 17:40:37 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 07 Jun 2023 21:11:20 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 67019
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 12:17:36 GMT
Server: Apache
Last-Modified: Fri, 09 Jun 2023 03:13:48 GMT
Accept-Ranges: bytes
Content-Length: 43132
Cache-Control: max-age=604800
Expires: Fri, 16 Jun 2023 12:17:36 GMT
Vary: Accept-Encoding,User-Agent
ETag: "a87c-5fda9c1f49403-gzip"
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline' *.ytimg.com vimeo.com *.vimeo.com www.youtube.com www.google.com www.google.no assets.adobedtm.com sparebank1.d3.sc.omtrdc.net *.cicero.no *.sparebank1.no *.googletagmanager.com cdn.tt.omtrdc.net activitymap.adobe.com; style-src 'self' 'unsafe-inline' *.sparebank1.no www.youtube.com services-test.cicero.no services.cicero.no translate.googleapis.com; img-src 'self' *.ytimg.com secure.adnxs.com track.adform.net *.doubleclick.net assets.adobedtm.com sparebank1.d3.sc.omtrdc.net alliansesamarbeidets.tt.omtrdc.net cm.everesttech.net www.facebook.com *.sparebank1.no *.boost.ai www.google.no www.google.com *.demdex.net www.googletagmanager.com www.gstatic.com data:; connect-src 'self' *.cicero.no *.demdex.net *.omtrdc.net *.brreg.no *.sparebank1.no publish.ne.cision.com translate.googleapis.com edge.adobedc.net; font-src 'self' *.sparebank1.no services-test.cicero.no services.cicero.no data:; media-src 'self'; frame-ancestors 'self'; frame-src 'self' snnfinans.no sdk.companywebcast.com candidate.hr-manager.net ir.oms.no channel.royalcast.com www.sr-finans.no *.sparebank1.no lt.morningstar.com www.youtube.com vimeo.com *.vimeo.com assets.adobedtm.com *.demdex.net sparebank1.demdex.net www.sign.nets.eu ir.asp.manamind.com www.sb1finans.no www.snnfinans.no dbsnn.no www.googletagmanager.com *.doubleclick.net www.ident.nets.eu www.sb1fo.no www.webcruiter.no *.easycruit.com sb1mobilbank://event www.sign-preprod1.nets.eu nam11.safelinks.protection.outlook.com nordmore.pameldingssystem.no players.brightcove.net agreeable-forest-0b9a11903.1.azurestaticapps.net activitymap.adobe.com pr.globenewswire.com signant.no; report-uri /bin/logservlet
Referrer-Policy: strict-origin-when-cross-origin
Content-Type: font/woff
Strict-Transport-Security: max-age=31536000
Access-Control-Allow-Origin: https://mobilbank-pm.sparebank1.no
Set-Cookie: DSESSIONID=5B5A2A9A.8EFE.6483185F;domain=.sparebank1.no;path=/;Secure
cxm=1-1|ZIMYY; path=/; HttpOnly; Secure

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 76070
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Jun 2023 17:40:37 GMT
expires: Fri, 07 Jun 2024 17:40:37 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 07 Jun 2023 21:11:20 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 67019
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

HTTP/1.1 200 
date: Fri, 09 Jun 2023 12:17:36 GMT
content-security-policy: default-src 'none'; img-src 'self' data: https://csfe.bankid.no https://statistikk.sparebank1.no; base-uri 'self'; font-src 'self' *.sparebank1.no data:; media-src 'self'; style-src 'self' 'unsafe-inline' 'report-sample' https://csfe.bankid.no https://services.bankid.no; object-src 'none'; script-src 'self' 'unsafe-inline' blob: *.sparebank1.no 'strict-dynamic' 'nonce-ec3O9mrMa1QLzjN9d6evNg' 'report-sample' 'unsafe-eval' https://csfe.bankid.no https://services.bankid.no https://www.sparebank1.no; report-uri https://www.sparebank1.no/logservlet/csp/enforce; form-action *.sparebank1.no; connect-src 'self' www.sparebank1.no *.demdex.net https://www.sparebank1.no; upgrade-insecure-requests; child-src https://csfe.bankid.no; frame-src https://csfe.bankid.no; frame-ancestors https://*.sparebank1.no https://*.dnbforsikring.no https://*.fremtind.no https://*.bnbank.no https://*.sbm.no https://*.lofavor.no https://*.coop.no
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
last-modified: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=60, must-revalidate, public
content-type: image/x-icon
accept-ranges: bytes
etag: "08fb4f83bbcb2eb956262f1bcc1b2b8a4"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
x-frame-options: DENY
content-length: 15086
x-envoy-upstream-service-time: 4
server: istio-envoy
Strict-Transport-Security: max-age=31536000
set-cookie: csrf=NxMZjiw1H-4OqKwMHalyXb3fVsx-8xMDhKsAHBWje10; Domain=sparebank1.no; Path=/; Secure; HttpOnly; SameSite=Strict
DSESSIONID=5B5A2A9A.94FF.64831860;path=/;Secure

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
content-length: 3340
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 03 Jun 2023 08:05:11 GMT
expires: Sun, 02 Jun 2024 08:05:11 GMT
cache-control: public, max-age=31536000
age: 533546
last-modified: Wed, 20 Apr 2022 14:24:23 GMT
content-type: image/svg+xml
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-type: text/javascript; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 09 Jun 2023 12:17:37 GMT
server: ESF
cache-control: private
content-length: 1475
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=MxfinXLx54UrD0vF8xwNdIfs6jEKtF9Ys_DY7KseolAukwfxw_3cYCmsvEET2FbOe8Sc_wJFVovMcCmwXhdOC5E_LY6FBcxjvinEwaNJ8thiq36ncWyyTv9hdcuHSFRI6IHj6KKTYO4bF_fwj2rQVFeZgk1NI---FkdSDQ0MV6U; expires=Sat, 09-Dec-2023 12:17:37 GMT; path=/; domain=.translate-pa.googleapis.com; HttpOnly
CONSENT=PENDING+478; expires=Sun, 08-Jun-2025 12:17:37 GMT; path=/; domain=.googleapis.com; Secure
expires: Fri, 09 Jun 2023 12:17:37 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

HTTP/3 200 OK
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 09 Jun 2023 12:17:37 GMT
server: ESF
cache-control: private
content-length: 1475
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=cDzBiNgQUG9RJzxW83z85un5tBRQi1lCzRfesCNJgF9ujNnENVfJY2JjiN6p_JF-hxhuVBglEcnhI_woHKlviyXHxSF8syBxEfYLr_6C_AcCY3OdK2YpGN7on0vdKgvtlWoG9pcNCiLgnOjgyBPG9CDHEtYy4_xD-R-E0FTSdKE; expires=Sat, 09-Dec-2023 12:17:37 GMT; path=/; domain=.translate-pa.googleapis.com; HttpOnly
CONSENT=PENDING+982; expires=Sun, 08-Jun-2025 12:17:37 GMT; path=/; domain=.googleapis.com; Secure
expires: Fri, 09 Jun 2023 12:17:37 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

HTTP/3 200 OK
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 09 Jun 2023 12:17:37 GMT
server: ESF
cache-control: private
content-length: 1475
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=fXQCdj7Dix6xMm5a9fsanfGWY2Pv1wzTpjlc2kbWTT_0mHQEiXebwaXNyN0F086HLrQJR4t-zNGnL-9O4k2Tw71AeG612MKDUzXvCpMH9WcBeVt8CGm_HKWRMX9MyY-Hq4YvhSPOClkaI1WilggJpnJ3BsNKQQxWH8WVkmWIKMU; expires=Sat, 09-Dec-2023 12:17:37 GMT; path=/; domain=.translate-pa.googleapis.com; HttpOnly
CONSENT=PENDING+280; expires=Sun, 08-Jun-2025 12:17:37 GMT; path=/; domain=.googleapis.com; Secure
expires: Fri, 09 Jun 2023 12:17:37 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 4205
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Jun 2023 21:45:57 GMT
expires: Fri, 07 Jun 2024 21:45:57 GMT
cache-control: public, max-age=31536000
age: 52300
last-modified: Sun, 12 Mar 2023 00:11:57 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1597
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 03 Jun 2023 07:51:33 GMT
expires: Sun, 02 Jun 2024 07:51:33 GMT
cache-control: public, max-age=31536000
age: 534364
last-modified: Tue, 22 Oct 2019 18:15:00 GMT
content-type: image/png
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 702
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 03 Jun 2023 07:45:25 GMT
expires: Sun, 02 Jun 2024 07:45:25 GMT
cache-control: public, max-age=31536000
age: 534732
last-modified: Thu, 03 Oct 2019 10:15:00 GMT
content-type: image/gif
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Jun 2023 12:17:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

HTTP/2 200 OK
accept-ranges: bytes
content-type: image/gif
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 43
date: Fri, 09 Jun 2023 12:17:37 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Tue, 22 Oct 2019 18:30:00 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 4205
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Jun 2023 21:45:57 GMT
expires: Fri, 07 Jun 2024 21:45:57 GMT
cache-control: public, max-age=31536000
age: 52300
last-modified: Sun, 12 Mar 2023 00:11:57 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1412
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Jun 2023 02:04:31 GMT
expires: Thu, 06 Jun 2024 02:04:31 GMT
cache-control: public, max-age=31536000
age: 209586
last-modified: Thu, 03 Oct 2019 10:15:00 GMT
content-type: image/gif
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 848
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Jun 2023 00:16:47 GMT
expires: Thu, 06 Jun 2024 00:16:47 GMT
cache-control: public, max-age=31536000
age: 216050
last-modified: Thu, 03 Oct 2019 10:15:00 GMT
content-type: image/gif
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

HTTP/3 204 No Content
content-type: image/gif; charset=us-ascii
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 09 Jun 2023 12:17:37 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-security-policy: script-src 'nonce-nBzQN4a9DMwOkocEQxp2xQ' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/TranslateApiHttp/cspreport;worker-src 'self', require-trusted-types-for 'script';report-uri /_/TranslateApiHttp/cspreport
cross-origin-opener-policy: same-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: __Secure-ENID=12.SE=A800Ehu_VrrC2AsYwbre-nMbadKga8s-v0WwKazlSWp8EGPQJ2bNlXbJ8_PVp0-xbhr_6c3oNhsRuLQm4WM8anUOAxQPH-TyoO-iWxHl3GFjw7P8X_ykNm1EHdPKO93lXi-8aVvXjtXpIiiX91EIKUO6W6kHh-kX78CRqY8C7dw; expires=Tue, 09-Jul-2024 04:35:55 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=lax
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

HTTP/3 200 OK
access-control-allow-origin: https://port-3000-php-1009235-essence9955619004.codeanyapp.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,content-encoding,content-type,x-goog-authuser,origin
content-type: text/plain; charset=UTF-8
date: Fri, 09 Jun 2023 12:17:47 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+045; expires=Sun, 08-Jun-2025 12:17:47 GMT; path=/; domain=.googleapis.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Fri, 09 Jun 2023 12:17:47 GMT
cache-control: private

HTTP/3 200 OK
access-control-allow-origin: https://port-3000-php-1009235-essence9955619004.codeanyapp.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Fri, 09 Jun 2023 12:17:47 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+782; expires=Sun, 08-Jun-2025 12:17:47 GMT; path=/; domain=.googleapis.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Fri, 09 Jun 2023 12:17:47 GMT

HTTP/3 200 OK
content-type: application/json; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 09 Jun 2023 12:17:37 GMT
content-disposition: attachment; filename="json.txt"; filename*=UTF-8''json.txt
cross-origin-opener-policy: same-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-resource-policy: cross-origin
content-security-policy: script-src 'nonce-qn9PS9hxmZTptrHP7l_GCQ' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/TranslateApiHttp/cspreport;worker-src 'self', require-trusted-types-for 'script';report-uri /_/TranslateApiHttp/cspreport
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
access-control-allow-origin: *
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

HTTP/2 200 OK
date: Fri, 09 Jun 2023 12:17:36 GMT
content-type: image/png
max-age: 2592000
last-modified: Fri, 09 Jun 2023 11:22:56 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 2411
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ReVUDYD0G%2FCDqaTR3CFw5AV3UZ0Sr8J2%2B3i09I7e5Ohl4ogvxVgstUy%2BpFyVNZPB0rCuh7Jz4ID4FyVA0mu49pOT19d11guYz9u7wDHU86rmnCEzI76gTtjFRuIMdbzGd70m"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d494ff92be1069b-OSL
X-Firefox-Spdy: h2