Open
Cached
·
just now
11
directives
Content-Security-Policy
Content-Security-Policy: default-src 'self';script-src 'self' 'nonce-DBn38nB5ogWPVj/8v4gUhA==' https://cdn.cloudcraft.co https://ajax.googleapis.com https://apis.google.com https://cdnjs.cloudflare.com https://checkout.stripe.com https://static.accountdock.com https://*.pusher.com https://*.awswaf.com https://connect-cdn.atl-paas.net https://*.googletagmanager.com https://connect-cdn.atl-paas.net;style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://cdnjs.cloudflare.com https://connect-cdn.atl-paas.net;font-src 'self' https://fonts.gstatic.com themes.googleusercontent.com https://maxcdn.bootstrapcdn.com;frame-src 'self' https://checkout.stripe.com https://accounts.google.com https://static.accountdock.com https://payments.stunning.co https://*.pusher.com;connect-src 'self' https://cdn.cloudcraft.co https://*.datadoghq.com https://*.datadoghq.eu https://checkout.stripe.com https://d3hb14vkzrxvla.cloudfront.net wss://ws-mt1.pusher.com https://*.pusher.com https://*.awswaf.com https://browser-intake-datadoghq.com https://accounts.google.com https://*.google-analytics.com https://*.analytics.google.com https://*.googletagmanager.com;img-src 'self' https: blob: https://*.google-analytics.com https://*.googletagmanager.com;media-src 'self' https://static.cloudcraft.co;object-src 'self';worker-src 'self' blob:;report-uri /api/csp/report
default-src
Keyword
—
'self'
script-src
Keyword
—
'self'
script-src
Nonce
—
'nonce-DBn38nB5ogWPVj/8v4gUhA=='
script-src
Host
—
style-src
Keyword
—
'self'
style-src
Keyword
—
'unsafe-inline'
font-src
Keyword
—
'self'
frame-src
Keyword
—
'self'
connect-src
Keyword
—
'self'
connect-src
Host
—
img-src
Keyword
—
'self'
img-src
Scheme
—
https:
img-src
Scheme
—
blob:
media-src
Keyword
—
'self'
object-src
Keyword
—
'self'
worker-src
Keyword
—
'self'
worker-src
Scheme
—
blob:
report-uri
Host
—
Content-Security-Policy-Report-Only
No report-only CSP headers found.