Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
HTTP/1.1 200 OK
Connection: keep-alive
X-UA-Compatible: IE=edge
Pinterest-Version: 18397b4
Content-Type: text/html; charset=utf-8
Set-Cookie: _pinterest_sess=TWc9PSZic2VBeGdCblowSnVzRis1cTNtRkttdDdZcVN4UENXS0t6V3AwdmExODBCcnZWQm84T2NHSU1nQzRKSTRscTBObGl0a2JoZXYrRFJDSUZZSWs3ZEM3d0s3TTNISTcxTldEU3RIQ2hmWVpna1QyQ0dlL2E0SU9IQzUrR0N2WTZydGJHNTlTb040YThRVTJsaXg1T0I0cEE9PSY5TzVWVnhEZEFNbUltbm82QlBtY2s0c0dKTWc9; expires=Thu, 27-Sep-2018 01:22:20 GMT; httponly; Max-Age=31103999; Path=/; secure
Content-Security-Policy: media-src 'self' *.pinimg.com blob:; object-src 'self' h.online-metrix.net; connect-src 'self' *.pinimg.com *.pinterest.com *.branch.io pinterest-media-upload.s3.amazonaws.com pinterest-waterloo.s3.amazonaws.com *.cedexis.com *.cedexis-radar.net ; script-src 'nonce-zROogYmFfP' 'strict-dynamic' 'self' *.pinterest.com *.pinimg.com *.google.com connect.facebook.net *.google-analytics.com *.googleapis.com *.gstatic.com *.accountkit.com *.facebook.com www.googleadservices.com googleads.g.doubleclick.net platform.twitter.com *.online-metrix.net *.bnc.lt bnc.lt *.branch.io *.yozio.com cdn.ampproject.org radar.cedexis.com *.cedexis-test.com 'unsafe-inline' 'unsafe-eval'; base-uri 'none'; report-uri /_/_/csp_report/
Vary: User-Agent, Cookie, Accept-Encoding
X-Upstream-Env: python
P3P: CP="This is not a P3P policy. See https://www.pinterest.com/_/_/help/articles/pinterest-and-p3p for more info."
Pinterest-Generated-By: coreapp-webapp-prod-0a01019e
Transfer-Encoding: chunked
Date: Mon, 02 Oct 2017 01:22:20 GMT
X-Pinterest-RID: 941762516068
Set-Cookie: _auth=0; expires=Thu, 27-Sep-2018 01:22:20 GMT; httponly; Max-Age=31103999; Path=/; secure
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Age: 0
X-Frame-Options: SAMEORIGIN
Set-Cookie: csrftoken=mxKHl0hmuP9Gp4qJEhJnGC5bc3unofpP; expires=Mon, 01-Oct-2018 01:22:20 GMT; Max-Age=31449600; Path=/; secure