HTTP/1.1 302 Found
Server: nginx/1.10.3
Date: Fri, 27 Mar 2020 16:54:43 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: oc245zlm3l03=lc8ri9kigdv71tlm0hgn5ukcci; path=/; secure; HttpOnly
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: oc_sessionPassphrase=eqmahyMg0AV83QlMhN%2B%2BoYqpbOlSWJGOT3w0n9Bw1n%2FY%2BTPTJn9MT1lxYAl0ilq5N%2FH31qOINSXdxZmllRsGOJPGP0uBlZN7EvrSEk7O88CpcEK5B77uJ71Ktlth%2FEMZ; path=/; secure; HttpOnly
Content-Security-Policy: default-src 'self'; script-src 'self' 'nonce-K2ptb0xOS1V1NitOMHVCNU1wM00xTFh0VUs4Zkp6MlpJZ1NmYWZocTVSRT06a2xLWUhvUDIxcC9kaG80U0N2UzBrYytDQ09wcUVHZjJFRExsUDc4R29raz0='; style-src 'self' 'unsafe-inline'; frame-src *; img-src * data: blob:; font-src 'self' data:; media-src *; connect-src *; object-src 'none'; base-uri 'self';
Referrer-Policy: no-referrer
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
X-Robots-Tag: none
X-XSS-Protection: 1; mode=block
Set-Cookie: __Host-nc_sameSiteCookielax=true; path=/; httponly;secure; expires=Fri, 31-Dec-2100 23:59:59 GMT; SameSite=lax
Set-Cookie: __Host-nc_sameSiteCookiestrict=true; path=/; httponly;secure; expires=Fri, 31-Dec-2100 23:59:59 GMT; SameSite=strict
Location: https://jugend.ddnss.de/index.php/login
Strict-Transport-Security: max-age=15768000; includeSubDomains; preload;
HTTP/2 200
server: nginx/1.10.3
date: Fri, 27 Mar 2020 16:54:43 GMT
content-type: text/html; charset=UTF-8
content-length: 5422
set-cookie: oc245zlm3l03=3fmkifoq3o1ucp8ga1bomfnf8u; path=/; secure; HttpOnly
expires: Thu, 19 Nov 1981 08:52:00 GMT
pragma: no-cache
set-cookie: oc_sessionPassphrase=QSGhjdsJq3bBsalKTbpJZT8rlqL%2Fe8Oo0Pdf9B3rjkHFfDLkLd159t8I1CEn70DGbSFTz%2FFDWZHzqYJcjjZ5rXRQAf8YccOJH0UzDmONjCtoQEVcyKrTBuXaG8yvHkXR; path=/; secure; HttpOnly
referrer-policy: no-referrer
x-content-type-options: nosniff
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-robots-tag: none
x-xss-protection: 1; mode=block
set-cookie: __Host-nc_sameSiteCookielax=true; path=/; httponly;secure; expires=Fri, 31-Dec-2100 23:59:59 GMT; SameSite=lax
set-cookie: __Host-nc_sameSiteCookiestrict=true; path=/; httponly;secure; expires=Fri, 31-Dec-2100 23:59:59 GMT; SameSite=strict
cache-control: no-cache, no-store, must-revalidate
content-security-policy: default-src 'none';base-uri 'none';manifest-src 'self';script-src 'self';style-src 'self' 'unsafe-inline';img-src 'self' data: blob:;font-src 'self' data:;connect-src 'self';media-src 'self';frame-ancestors 'self';worker-src 'self' blob:;form-action 'self'
feature-policy: autoplay 'self';camera 'none';fullscreen 'self';geolocation 'none';microphone 'none';payment 'none'
strict-transport-security: max-age=15768000; includeSubDomains; preload;
|