X-Runtime: 0.066899
Content-Type: text/html; charset=utf-8
X-UA-Compatible: IE=edge
X-XSS-Protection: 1; mode=block
Status: 200 OK
HTTP/1.1 200 OK
Set-Cookie: _GTP_session=BAh7CUkiD3Nlc3Npb25faWQGOgZFRkkiJWJlZmJjM2YxNGY3Njg0MjI5ZGFjN2YyNDMzMDllNDI1BjsAVEkiDGNhcnRfaWQGOwBGaQSQna0HSSINcXVvdGVfaWQGOwBGaQSRna0HSSIQX2NzcmZfdG9rZW4GOwBGSSIxOXU1NmlGUVF1WC8vbW1wVXhVRjdqZm9ad1R2N1pJL09ENFl2cEFVVWNrVT0GOwBG--3ebba5889bdd497d16a85bb8099b205b804c2406; path=/; secure; HttpOnly; HttpOnly
Content-Security-Policy: default-src 'self'; connect-src 'self' http://www.angelflowers.com.au http://*.hotjar.com:* https://*.hotjar.com:* ws://*.hotjar.com wss://*.hotjar.com sumome.com *.kxcdn.com *.zopim.com wss://*.zopim.com https://translate.googleapis.com https://r13---sn-ntq7en7y.googlevideo.com https://www.youtube.com https://youtube.com http://youtube.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' http://*.hotjar.com https://*.hotjar.com https://tagmanager.google.com https://s.adroll.com *.sumome.com *.googlecommerce.com *.googlecommerce.com *.kxcdn.com *.gtp.com.au http://tracking.gtp.com.au https://tracking.gtp.com.au *.zopim.com *.addthis.com http://static.mobilewebsiteserver.com https://translate.googleapis.com static.tacdn.com *.vimeo.com *.tripadvisor.com http://www.jscache.com *.facebook.net *.googletagmanager.com *.twitter.com http://platform.linkedin.com https://platform.linkedin.com http://www.jscache.com http://translate.google.com http://www.gstatic.com/ *.pinterest.com *.weatherzone.com.au http://rtsys.rtrk.com.au http://d.adroll.com http://www.youtube.com *.googleadservices.com http://www.googleadservices.com http://a.adroll.com http://vxml4.plavxml.com http://vxml4.plavxml.com.au *.pinterest.com *.angelflowers.com.au *.gtp-icommerce.com.au/ https://ssl.google-analytics.com *.google-analytics.com https://assets.zendesk.com *.facebook.net; img-src 'self' data: *.kxcdn.com http://*.hotjar.com https://*.hotjar.com https://d.adroll.com https://ads.yahoo.com https://x.bidswitch.net https://us-u.openx.net https://ib.adnxs.com https://idsync.rlcdn.com https://cms.gtp-icommerce.com.au http://cms.gtp-icommerce.com.au *.gtp.com.au *.zopim.com *.addthis.com *.vimeo.com *.twitter.com *.crossfit.com *.doubleclick.net *.static.tacdn.com *.tripadvisor.com https://translate.googleapis.com *.google.com *.google.com.au https://www.gstatic.com https://www.paypalobjects.com *.www.paypalobjects.com http://www.semrush.com https://ssl.gstatic.com *.pinterest.com https://s-passets.pinimg.com *.twitter.com https://plus.google.com http://maps.googleapis.com https://maps.googleapis.com http://data.weatherzone.com.au http://wz5.resources.weatherzone.com.au http://rtsys.rtrk.com.au *.google-analytics.com *.pinterest.com *.angelflowers.com.au http://vsrv1assets2.gtp.com.au http://vsrv1assets1.gtp.com.au cms.gtp-icommerce.com.au https://ssl.google-analytics.com *.facebook.com https://assets.zendesk.com *.googleadservices.com; style-src 'self' 'unsafe-inline' https://tagmanager.google.com *.kxcdn.com *.addthis.com *.vimeo.com *.tripadvisor.com static.tacdn.com https://translate.googleapis.com *.angelflowers.com.au http://assets1.angelflowers.com.au http://fonts.googleapis.com/ https://fonts.googleapis.com https://assets.zendesk.com; font-src 'self' data: http://*.hotjar.com https://*.hotjar.com *.kxcdn.com *.zopim.com https://fonts.gstatic.com http://fonts.gstatic.com *.angelflowers.com.au https://themes.googleusercontent.com; child-src 'self' https://*.hotjar.com *.googlecommerce.com *.googlecommerce.com *.kxcdn.com *.audioacrobat.com *.renewtrust.com *.addthis.com *.vimeo.com http://brightgreen.com https://brightgreen.com *.tripadvisor.com *.facebook.com *.facebook.com https://app.wodify.com *.googletagmanager.com *.twitter.com http://platform.linkedin.com https://platform.linkedin.com http://maps.google.com.au https://maps.google.com.au https://www.google.com http://www.google.com http://www.google.com.au http://googleads.g.doubleclick.net https://www.youtube.com http://www.youtube.com https://assets.zendesk.com *.facebook.com *.facebook.com https://tautt.zendesk.com; object-src 'self' https://*.hotjar.com *.kxcdn.com *.zopim.com *.googletagmanager.com *.twitter.com http://platform.linkedin.com https://platform.linkedin.com *.gtp-icommerce.com.au https://www.youtube.com http://www.youtube.com http://youtube.com
X-Rack-Cache: miss
Access-Control-Allow-Origin: http://www.angelflowers.com.au http://assets1.angelflowers.com.au
Expires: Thu, 09 Nov 2017 21:29:56 GMT
X-Frame-Options: SAMEORIGIN
Connection: keep-alive
Server: nginx/1.12.1
X-Content-Type-Options: nosniff
ETag: "effb4e180dd5a119751f408301b16c8a"
Strict-Transport-Security: max-age=31536000; includeSubdomains;
Vary: Accept-Encoding
Transfer-Encoding: chunked
Date: Thu, 09 Nov 2017 21:24:56 GMT
X-UA-Compatible: IE=Edge,chrome=1
X-Request-Id: 594032f80bd86e7d5b922c14a204797f
Cache-Control: max-age=300