Content-Security-Policy: default-src 'self' data: blob:;report-uri https://tipp24.report-uri.io/r/default/csp/enforce;script-src 'unsafe-inline' 'unsafe-eval' blob: data: 'self' http://*.adform.net *.adform.net *.cloudfront.net *.criteo.com *.criteo.net *.doubleclick.net *.getsentry.com *.google.com *.google-analytics.com *.googleadservices.com *.googleapis.com *.googletagmanager.com *.globalsign.com *.gstatic.com *.hotjar.com cdn.jsdelivr.net *.maxymiser.net *.mxpnl.com *.optimizely.com *.sovendus.com *.tipp24.com *.tipp24.ie *.tipp24.net *.mylotto24.ie *.mylotto24.co.uk *.mylotto24.com.au *.m6r.eu *.getmdl.io *.cloudflare.com *.facebook.net *.facebook.com *.bing.com *.trustedshops.com *.usabilla.com ;frame-src 'self' https: *.adform.net dis.eu.criteo.com *.google.com *.netkauf.de *.computop-paygate.com api.sovendus.com *.optimizely.com ;child-src 'self' https: *.adform.net dis.eu.criteo.com *.google.com *.netkauf.de *.computop-paygate.com api.sovendus.com *.optimizely.com ;style-src data: 'unsafe-inline' 'self' *.adform.net *.cloudflare.net *.cloudfront.net *.google.com *.googleapis.com *.gstatic.com *.optimizely.com *.trustedshops.com *.getmdl.io; font-src data: *.googleapis.com *.trustedshops.com *.gstatic.com ; img-src * 'self' data: blob: ;connect-src * 'self' *.google.com *.googleapis.com *.google-analytics.com *.googletagmanager.com *.hotjar.com *.getsentry.com *.sentry.io *.criteo.net *.optimizely.com *.adform.net *.facebook.net *.facebook.com *.bing.com *.trustedshops.com *.usabilla.com ;
Date: Mon, 28 Aug 2017 13:21:42 GMT
X-Content-Type-Options: nosniff
Set-Cookie: SERVERID=cara-ws-09; path=/
Set-Cookie: __cfduid=d0394d2a9dcadc1f5a8af8e82d6e1ac871503926502; expires=Tue, 28-Aug-18 13:21:42 GMT; path=/; domain=.mylotto24.ie; HttpOnly
Vary: Accept-Encoding
Expires: 0
Set-Cookie: sessionid=ee82b9dd-efbe-481c-b2f5-34313f3e520f;path=/;Secure;HttpOnly
Set-Cookie: X-CSRF-TOKEN=9eeebe8e-8418-441c-829f-3c2c2197aff3;path=/;Secure
Pragma: no-cache
X-XSS-Protection: 1; mode=block
HTTP/1.1 200
Content-Language: en-IE
Server: cloudflare-nginx
Connection: close
CF-RAY: 3957933e0864265a-FRA
X-Application-Context: cara:prod:9000
Strict-Transport-Security: max-age=5184000;
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Content-Type: text/html;charset=UTF-8