0: HTTP/1.0 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
Access-Control-Allow-Methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 1728000
Content-Length: 1470
Content-Security-Policy: base-uri 'self'; connect-src wss: 'self' *.gosolo.io *.hubapi.com js.hscta.net *.hubspot.com hscollectedforms.net *.hsforms.com maps.googleapis.com storage.googleapis.com *.ingest.sentry.io *.us.auth0.com developer.nrel.gov https://*.google-analytics.com https://*.analytics.google.com https://*.googletagmanager.com *.usersnap.com https://s3.eu-central-1.amazonaws.com/upload.usersnap.com https://us-central1-sinuous-axiom-201618.cloudfunctions.net https://noembed.com https://login.microsoftonline.com https://accounts.google.com https://vimeo.com https://overpass-api.de https://static.userguiding.com https://user.userguiding.com https://*.userguiding.com; default-src 'self'; font-src 'self' data: fonts.gstatic.com *.usersnap.com https://fonts.googleapis.com; frame-ancestors 'self' *.gosolo.io *.powur.com *.minski.io enerflo.io *.enerflo.io enerflo.dev *.enerflo.dev quotes.radixsolar.com; frame-src 'self' *.gosolo.io *.us.auth0.com https://*.paygateway.com *.hubspot.com *.hs-sites.com *.hubspot.net play.hubspotvideo.com *.hsforms.net *.hsforms.com https://www.youtube.com https://player.vimeo.com https://vimeo.com https://accounts.google.com https://storage.googleapis.com/phoenix-cloud-storage/channel-partners/vireo/live/ https://partner-staging.dividendfinance.com https://partner.dividendfinance.com https://*.userguiding.com; child-src *.hsforms.com; img-src 'self' data: blob: cdn.gosolo.io *.googleapis.com *.hubspot.com *.hubspot.net js.hscta.net *.hsforms.net *.hsforms.com https://www.google.com https://*.google-analytics.com https://*.googletagmanager.com https://*.analytics.google.com maps.gstatic.com https://ssl.gstatic.com https://www.gstatic.com *.usersnap.com https://*.ytimg.com https://i.vimeocdn.com https://*.userguiding.com; manifest-src 'self'; media-src 'self' storage.googleapis.com; object-src 'none'; script-src 'unsafe-inline' 'unsafe-eval' 'report-sample' 'self' cdn.gosolo.io https://googleads.g.doubleclick.net *.hs-analytics.net *.hs-banner.com *.hubspot.com *.hubspot.net *.hs-scripts.com *.hsadspixel.net js.hscta.net static.hsappstatic.net hscollectedforms.net *.hsleadflows.net *.hsforms.net *.hsforms.com *.hubspotfeedback.com feedback.hubapi.com js.paygateway.com *.usemessages.com maps.googleapis.com *.usersnap.com www.google-analytics.com https://tagmanager.google.com https://*.googletagmanager.com https://ssl.google-analytics.com https://www.google.com https://www.googleadservices.com https://www.youtube.com https://player.vimeo.com https://apis.google.com https://accounts.google.com https://static.userguiding.com https://*.userguiding.com; style-src 'report-sample' 'self' 'unsafe-inline' cdn.gosolo.io fonts.googleapis.com https://tagmanager.google.com *.usersnap.com cdn2.hubspot.net https://accounts.google.com; worker-src 'self' blob:;
Content-Type: text/html; charset=utf-8
Etag: "d6gsmasl8g2s14u"
Last-Modified: Fri, 20 Dec 2024 19:59:58 GMT
Server: Caddy
Strict-Transport-Security: max-age=15724800; includeSubDomains
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-Xss-Protection: 1; mode=block
Date: Sat, 21 Dec 2024 15:05:06 GMT
Via: 1.1 google
Cache-Control: public,max-age=30
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|