Strict-Transport-Security: max-age=86400
Set-Cookie: csrftoken=4rd8Tmu495l158bpgIeVqlQtteTkiPng; expires=Sat, 16-Feb-2019 17:00:03 GMT; Max-Age=31449600; Path=/; secure
Transfer-Encoding: chunked
Content-Security-Policy-Report-Only: default-src 'self' fonts.gstatic.com *.intercomcdn.com data:; img-src 'self' data: *; style-src 'self' 'unsafe-inline' *.opentok.com fonts.googleapis.com; frame-src 'self' checkout.stripe.com https://surfly.quadernoapp.com https://session.surfly.gratis *.surfly.gratis; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.opentok.com *.segment.com *.stripe.com *.intercom.io *.intercom.com *.intercomcdn.com www.googleadservices.com www.google-analytics.com www.googletagmanager.com *.adroll.com; connect-src 'self' *.stripe.com *.opentok.com *.segment.io *.intercom.io *.intercomcdn.com *.tokbox.com wss://*.tokbox.com wss://*.intercom.io *.surfly.gratis; report-uri https://sentry.io/api/260766/csp-report/?sentry_key=46761da907cc424595311fc2a7555e48
Server: surfly.com
Vary: Cookie
P3P: CP=P3P is disabled
Content-Type: text/html; charset=utf-8
Surfly-Forwarded: 62.75.137.71
Cache-Control: private, max-age=0
HTTP/1.1 200 OK
Date: Sat, 17 Feb 2018 17:00:03 GMT
Last-Modified: Sat, 17 Feb 2018 17:00:03 GMT
Expires: Sat, 17 Feb 2018 17:00:03 GMT