Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-Request-Id: 33e52773-45dc-43f6-80e3-b44b8bf1452d
Content-Security-Policy: default-src 'self' https://mastodon.art https://curate.mastodon.art; style-src 'self' 'unsafe-inline'; script-src 'self'; img-src 'self' https://curate.mastodon.art data:; object-src 'self'; media-src 'self' https://mastodon.art https://curate.mastodon.art; connect-src 'self' wss://mastodon.art; upgrade-insecure-requests
Transfer-Encoding: chunked
Vary: Accept-Encoding
Cache-Control: max-age=0, private, must-revalidate
Date: Fri, 28 Jul 2017 16:12:25 GMT
Content-Type: text/html; charset=utf-8
Connection: keep-alive
X-Runtime: 0.135774
Set-Cookie: _mastodon_session=alNGQ3hpWGRwU2tDZnB5VHBWMUVyTUVpejZZR2xZclAwa0RWbmJmTi9rOTFYMVZURUVZUGs3TFRSZUZXTmtQZk1XZWFtSE1aYjBkYm1UZnJERi9lRDZGYnMwcU1mU3NFN3pQK042S1JDTVZXNlZ2OGNHcTBGdHdzeS81eStqallIdmphcXJTY3d6ckFDek5JK3BmamJBbVBuK2JQRktNS0dWZ0FQckhUUjdtZEFNeG1RWnp1RkVlVUdyQ3FQYXk2LS1OSlpMOW9tcFNlYkpuVkdvSmMwdVF3PT0%3D--fcdb0da12eec45e52a81bd03a8398a9fbd35b8d2; path=/; secure; HttpOnly
Referrer-Policy: strict-origin-when-cross-origin
ETag: W/"6efac4aa9d942284aa496621ab247333"
HTTP/1.1 200 OK
Server: Mastodon
X-XSS-Protection: 1; mode=block