bytes
max-age=0, no-cache, no-store, must-revalidate
Upgrade, Keep-Alive
gzip
26177
default-src https://evang.at; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://evang.at https://*.basemaps.cartocdn.com/rastertiles/voyager/ https://cdnjs.cloudflare.com/ajax/libs/Chart.js/3.3.2/chart.min.js https://connect.facebook.net https://maps.google.com https://maps.googleapis.com https://spenden.twingle.de/embed/generic https://static.newsletter2go.com/utils.js https://www.cognitoforms.com https://www.google-analytics.com/analytics.js https://www.googletagmanager.com/gtag/ https://www.outdooractive.com/de/embed/49140491/js https://portal-widget.churchdesk.com https://static.cognitoforms.com/form/modern/ https://widgets.churchdesk.com/assets/js/ https://api.flickr.com/services/rest/; style-src 'self' 'unsafe-inline' https://evang.at https://ajax.googleapis.com/ajax/libs/jqueryui/ https://www.google.com https://fonts.googleapis.com https://portal-widget.churchdesk.com; img-src 'self' data: https://evang.at https://*.basemaps.cartocdn.com/rastertiles/voyager/ https://*.static.flickr.com https://api.newsletter2go.com/captcha/image/ https://*.ggpht.com https://khms0.googleapis.com https://khms1.googleapis.com https://maps.google.com https://maps.googleapis.com https://maps.gstatic.com https://ps.w.org/ https://streetviewpixels-pa.googleapis.com/ https://update.borlabs.io/products/ https://www.facebook.com https://www.google-analytics.com https://www.googletagmanager.com https://www.gstatic.com https://region1.google-analytics.com https://www.newsletter2go.com/images/loader.svg https://www.relevanssi.com/assets/; connect-src 'self' https://evang.at https://api.newsletter2go.com https://maps.googleapis.com https://www.googletagmanager.com https://www.google-analytics.com https://region1.google-analytics.com; font-src 'self' data: https://evang.at https://fonts.gstatic.com https://www.google.com; media-src 'self' data:; report-uri /csp-report/; form-action 'self' https://epv-evang.at; frame-ancestors 'self' https://evang.at; object-src 'self' https://evang.at; frame-src 'self' data: https://accounts.google.com https://calendar.google.com gsa://onpageload https://my.walls.io/evangat https://onpageload https://player.vimeo.com https://spenden.twingle.de https://uvp.apa.at/embed/ https://www.google.com https://www.youtube-nocookie.com https://www.youtube.com https://youtu.be https://www.cognitoforms.com https://forms.churchdesk.com https://portal-widget.churchdesk.com https://widgets.churchdesk.com https://open.spotify.com; base-uri 'self'; report-to https://evang.at/csp-report/; block-all-mixed-content
text/html; charset=UTF-8
same-origin-allow-popups
Fri, 12 Jan 2024 18:40:43 GMT
Mon, 29 Oct 1923 20:30:00 GMT
timeout=15, max=100
Fri, 12 Jan 2024 18:38:02 GMT
autoplay=(self), encrypted-media=(self), geolocation=(self), picture-in-picture=(self)
no-cache
same-origin
Apache
max-age=31536000; includeSubDomains; preload
h2
User-Agent,Accept-Encoding
nosniff, nosniff
on
noopen
SAMEORIGIN
none
1; mode=block
|