Set-Cookie: CONCRETE5=a4660633f0aba9c2c428aeebacb83eef; path=/; HttpOnly
X-Frame-Options: SAMEORIGIN
Content-Type: text/html; charset=UTF-8
X-Xss-Protection: 1; mode=block
Cache-Control: no-cache, private,proxy-revalidate,proxy-revalidate
Connection: close
Alt-Svc: quic=":443"; ma=2592000; v="35,37,38,39"
X-Content-Type-Options: nosniff
Referrer-Policy: no-referrer-when-downgrade
Content-Security-Policy-Report-Only: default-src 'self'; style-src 'self' 'unsafe-inline' https://widget.raisenow.com/widgets/lema/ https://fonts.googleapis.com/ https://www.gstatic.com/; script-src 'self' 'unsafe-inline' 'unsafe-eval' data: https://www.gstatic.com/ https://static.addtoany.com/ https://static.addtoany.com/menu/locale/de.js https://static.addtoany.com/menu/svg/ https://static.addtoany.com/menu/page.js https://www.googletagmanager.com/gtag/ https://analytics.widmersolutions.ch/piwik.js https://www.google-analytics.com/analytics.js https://widget.raisenow.com/widgets/lema/ https://widget.raisenow.com/widgets/ela/ blob:; font-src 'self' https://fonts.gstatic.com/; img-src 'self' blob: https://www.gstatic.com/ https://widget.raisenow.com/widgets/lema/ https://stats.g.doubleclick.net data: https://analytics.widmersolutions.ch/ https://www.google-analytics.com/ https://www.concrete5.org/files/; frame-src 'self' https://static.addtoany.com/ https://www.youtube.com https://player.vimeo.com https://api.raisenow.com/ https://payment.datatrans.biz/ https://secure5.arcot.com/; connect-src https://www.google-analytics.com https://stats.g.doubleclick.net https://www.frontiers.ch/; report-uri https://frontiers.report-uri.com/r/d/csp/reportOnly;
Strict-Transport-Security: max-age=2592000
Transfer-Encoding: chunked
HTTP/1.1 200 OK
Date: Tue, 13 Mar 2018 11:42:59 GMT
Accept-Ranges: bytes