HTTP/1.1 301
Cache-Control: private, max-age=0, no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Set-Cookie: JSESSIONID=160B47189905FD1D1F43B21AAD81BE7E; Path=/; HttpOnly
Set-Cookie: chumewe_user=ce684765-4a2e-4d74-8a8b-cb9a7c1d8b7b; Version=1; Domain=.glossybox.no; Path=/; Max-Age=157784630; Expires=Sun, 20-Dec-2026 05:53:42 GMT; SameSite=None; Secure
Set-Cookie: chumewe_sess=e2fdbfef-75e4-4c49-ad8f-39ad23f790b8; Version=1; Domain=.glossybox.no; Path=/; Max-Age=14400; Expires=Mon, 20-Dec-2021 04:49:52 GMT; SameSite=None; Secure
Set-Cookie: locale_V6=nb_NO; Version=1; Domain=.glossybox.no; Path=/; Max-Age=31556926; Expires=Tue, 20-Dec-2022 06:38:38 GMT; SameSite=None; Secure
Location: https://www.glossybox.no/
Transfer-Encoding: chunked
Date: Mon, 20 Dec 2021 00:49:52 GMT
HTTP/2 200
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: JSESSIONID=64B89430BFA4FE271167AED523F1FF46; Path=/; Secure; HttpOnly
set-cookie: chumewe_user=a64b49b7-932e-454e-8605-0e221dd8e3e2; Version=1; Domain=.glossybox.no; Path=/; Max-Age=157784630; Expires=Sun, 20-Dec-2026 05:53:43 GMT; SameSite=None; Secure
set-cookie: chumewe_sess=33c48b6f-8cda-41d7-a15f-78102a660ad1; Version=1; Domain=.glossybox.no; Path=/; Max-Age=14400; Expires=Mon, 20-Dec-2021 04:49:53 GMT; SameSite=None; Secure
set-cookie: locale_V6=nb_NO; Version=1; Domain=.glossybox.no; Path=/; Max-Age=31556926; Expires=Tue, 20-Dec-2022 06:38:39 GMT; SameSite=None; Secure
set-cookie: csrf_token=08191945449094904071; Version=1; Path=/; SameSite=None; HttpOnly; Secure
content-security-policy-report-only: child-src 'self' https://www.googletagmanager.com https://*.liveperson.net https://cdn.appdynamics.com https://*.lpsnmedia.net https://www.facebook.com https://connect.facebook.net https://*.google.com https://widget.trustpilot.com https://*.doubleclick.net https://www.youtube.com https://www.zenaps.com https://plugin.monotote.com https://*.smct.co https://smct.co https://*.akamaihd.net https://*.translate.naver.net https://*.recaptcha.net https://ln-rules.rewardstyle.com https://tpc.googlesyndication.com https://tr.snapchat.com https://www.shoplooks.com https://s1.thcdn.com https://www.awin1.com https://d2d7do8qaecbru.cloudfront.net; connect-src 'self' https://*.thcdn.com https://*.ingest.sentry.io https://*.pingdom.net https://*.doubleclick.net https://*.google-analytics.com https://capture.trackjs.com https://fp.zenaps.com https://www.facebook.com https://*.google.com https://*.thehut.net https://services.postcodeanywhere.co.uk https://*.sciencebehindecommerce.com https://*.akamaihd.net https://*.googleapis.com https://*.trustpilot.com https://*.pinterest.com https://*.doubleclick.net https://*.bing.com https://connect.facebook.net https://*.baidu.com https://*.parcellab.com https://tr.snapchat.com https://privacyportal-eu.onetrust.com https://smct.co https://*.smct.co https://cognito-identity.eu-west-1.amazonaws.com https://firehose.eu-west-1.amazonaws.com; default-src 'none'; font-src 'self' data: https://*.thcdn.com https://fp.zenaps.com https://cdnjs.cloudflare.com https://fonts.gstatic.com https://fonts.googleapis.com https://fonts.smct.co https://fonts.smct.io https://fonts.googleapis.com https://fonts.gstatic.com https://maxcdn.bootstrapcdn.com; form-action 'self' https://www.facebook.com https://www.glossybox.no https://m.glossybox.no https://checkout.glossybox.no https://connect.facebook.net https://tr.snapchat.com; frame-ancestors 'self'; img-src 'self' data: https://*.thcdn.com https://col.eum-appdynamics.com https://usage.trackjs.com https://*.lpsnmedia.net https://*.doubleclick.net https://www.google-analytics.com https://*.google.com https://cx.atdmt.com https://www.zenaps.com https:; media-src 'self' https://*.thcdn.com https://*.lpsnmedia.net; object-src 'self' https://*.thcdn.com https://www.youtube.com; report-uri https://csp.thehut.net/cspReport.txt; script-src 'self' 'unsafe-eval' 'unsafe-inline' data: https://*.thcdn.com https://*.thehut.net https://rum-static.pingdom.net https://*.liveperson.net https://*.lpsnmedia.net https://*.doubleclick.net https://static.cdn-apple.com https://*.liveperson.com https://www.googletagmanager.com https://cdnjs.cloudflare.com https://fp.zenaps.com https://www.youtube.com https://www.google-analytics.com https://*.google.com https://connect.facebook.net https://bat.bing.com https://widget.trustpilot.com https://s.ytimg.com https://www.googletagservices.com https://*.googleapis.com https://ssl.trustpilot.com https://www.facebook.com https://www.googleadservices.com https://www.gstatic.com https://www.dwin1.com https://cdn.trackjs.com https://seal.digicert.com https://remote.captcha.com https://plugin.monotote.com https://static.ads-twitter.com https://*.twitter.com https://*.recaptcha.net https://*.sciencebehindecommerce.com https://*.tribalfusion.com https://*.akamaihd.net https://*.microsofttranslator.com https://google.com https://*.trustpilot.com https://*.translate.naver.net https://*.doubleclick.net https://ln-rules.rewardstyle.com https://*.google-analytics.com https://twitter.com https://tpc.googlesyndication.com https://*.baidu.com https://sc-static.net https://*.google.co.uk https://google.co.uk https://*.shoplooks.com https://slooks.top https://slooks.me https://geolocation.onetrust.com; style-src 'self' 'unsafe-inline' https://*.thcdn.com https://*.google.com https://*.googleapis.com https://fp.zenaps.com https://cdnjs.cloudflare.com https://*.googleapis.com https://*.translate.naver.net https://*.microsofttranslator.com https://www.shoplooks.com https://static.shoplooks.com https://cdn.parcellab.com https://fonts.smct.co https://maxcdn.bootstrapcdn.com https://fonts.googleapis.com; upgrade-insecure-requests; report-to report-endpoint
referrer-policy: unsafe-url
x-xss-protection: 1; mode=block; report=/xssProtection.txt
strict-transport-security: max-age=31536000; includeSubDomains; preload
report-to: {"group":"report-endpoint","max_age":86400,"endpoints":[{"url":"https://csp.thehut.net/cspReport.txt","priority":1,"weight":1}],"include_subdomains":true}
vary: accept-encoding
content-type: text/html;charset=UTF-8
date: Mon, 20 Dec 2021 00:49:53 GMT
set-cookie: NSC_mc_wtsw_efgbvmu_xfctsw_8010_D=ffffffff09031f0545525d5f4f58455e445a4a42297a;expires=Mon, 20-Dec-2021 03:49:53 GMT;path=/;secure;httponly
|