HTTP/1.1 301 Moved Permanently
Server: nginx/1.21.0
Date: Sat, 30 Oct 2021 23:14:49 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 227
Connection: keep-alive
Location: https://hipeon.com/
Expires: Sun, 30 Oct 2022 23:14:49 GMT
Cache-Control: max-age=31536000
Pragma: public
Cache-Control: public
HTTP/2 302
server: nginx/1.21.0
date: Sat, 30 Oct 2021 23:14:50 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://www.hipeon.com/
pragma: no-cache
cache-control: max-age=31536000
expires: Sun, 30 Oct 2022 23:14:50 GMT
report-to: {"group":"report-endpoint","max_age":10886400,"endpoints":[{"url":"https:\/\/www.hipeon.com\/"}]}
content-security-policy-report-only: font-src *.cloudflare.com *.cloudfront.net dntqejcgo2fkp.cloudfront.net *.yotpo.com *.google.com *.google.co.uk *.jsdelivr.net *.twitter.com *.tawk.to *.trustpilot.com *.gstatic.com *.typekit.net *.twimg.com *.trustedshops.com *.googleapis.com *.g.doubleclick.net www.hipeon.com *.fontawesome.com fonts.gstatic.com 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com *.twitter.com *.tawk.to *.google.co.uk *.cloudfront.net dntqejcgo2fkp.cloudfront.net *.yotpo.com 'self' 'unsafe-inline'; frame-ancestors *.twitter.com *.trustpilot.com *.google.co.uk *.tawk.to *.cloudfront.net dntqejcgo2fkp.cloudfront.net 'self'; frame-src geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.paypal.com www.sandbox.paypal.com player.vimeo.com *.twitter.com *.trustpilot.com *.google.co.uk *.tawk.to *.cloudfront.net dntqejcgo2fkp.cloudfront.net js.stripe.com m.stripe.com x.klarnacdn.net klarna.com *.weltpixel.com *.yotpo.com 'self' 'unsafe-inline'; img-src widgets.magentocommerce.com www.googleadservices.com www.google-analytics.com t.paypal.com www.paypal.com www.paypalobjects.com fpdbs.paypal.com fpdbs.sandbox.paypal.com *.vimeocdn.com s.ytimg.com *.cloudflare.com *.cloudfront.net dntqejcgo2fkp.cloudfront.net *.yotpo.com *.google.com *.google.co.uk *.klarna.com *.googleadservices.com *.google-analytics.com *.jsdelivr.net *.paypal.com *.twitter.com *.twimg.com *.ytimg.com 'self' data: *.lightemporium.com *.usercentrics.eu *.trustpilot.com *.g.doubleclick.net *.tawk.to cdn.jsdelivr.net 'self' 'unsafe-inline'; script-src assets.adobedtm.com geostag.cardinalcommerce.com 1eafstag.cardinalcommerce.com geoapi.cardinalcommerce.com 1eafapi.cardinalcommerce.com songbird.cardinalcommerce.com includestest.ccdc02.com www.googleadservices.com www.google-analytics.com www.paypal.com www.sandbox.paypal.com www.paypalobjects.com t.paypal.com s.ytimg.com video.google.com vimeo.com www.vimeo.com *.vimeocdn.com cdn-scripts.signifyd.com www.youtube.com *.hipeon.com *.cloudflare.com *.cloudfront.net dntqejcgo2fkp.cloudfront.net *.yotpo.com *.google.com *.google.co.uk *.tawk.to *.paypal.com *.googletagmanager.com *.jsdelivr.net *.twitter.com *.google-analytics.com *.twimg.com *.gstatic.com *.trustedshops.com *.usercentrics.eu *.fontawesome.com *.trustpilot.com *.g.doubleclick.net js.stripe.com m.stripe.com x.klarnacdn.net klarna.com cdn.jsdelivr.net 'self' 'unsafe-inline' 'unsafe-eval'; style-src getfirebug.com *.hipeon.com *.cloudflare.com *.cloudfront.net dntqejcgo2fkp.cloudfront.net *.yotpo.com *.google.com *.google.co.uk *.paypal.com *.jsdelivr.net *.googleapis.com *.twitter.com *.twimg.com *.gstatic.com *.typekit.net *.trustedshops.com *.usercentrics.eu *.fontawesome.com *.trustpilot.com *.g.doubleclick.net *.tawk.to fonts.googleapis.com cdn.jsdelivr.net 'self' 'unsafe-inline'; object-src *.cloudflare.com *.cloudfront.net *.yotpo.com dntqejcgo2fkp.cloudfront.net *.tawk.to 'self' 'unsafe-inline'; media-src 'self' 'unsafe-inline'; manifest-src *.hipeon.com *.cloudflare.com *.cloudfront.net dntqejcgo2fkp.cloudfront.net *.tawk.to 'self' 'unsafe-inline'; connect-src geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com *.cloudflare.com *.cloudfront.net dntqejcgo2fkp.cloudfront.net *.yotpo.com *.google.com *.google.co.uk *.twitter.com *.tawk.to *.paypal.com *.twimg.com *.jsdelivr.net *.trustpilot.com *.g.doubleclick.net *.google-analytics.com js.stripe.com m.stripe.com x.klarnacdn.net klarna.com wss://*.tawk.to 'self' 'unsafe-inline'; child-src *.hipeon.com *.cloudflare.com *.cloudfront.net dntqejcgo2fkp.cloudfront.net *.tawk.to 'self' 'unsafe-inline'; default-src *.cloudflare.com *.cloudfront.net *.yotpo.com dntqejcgo2fkp.cloudfront.net *.tawk.to embed.tawk.to/5bcf1f2a476c2f239ff5a249/default *.hipeon.com 'self' 'unsafe-inline' 'unsafe-eval'; base-uri *.cloudflare.com *.cloudfront.net dntqejcgo2fkp.cloudfront.net *.tawk.to 'self' 'unsafe-inline'; report-uri https://www.hipeon.com/; report-to report-endpoint;
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests;
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: CROSS-ORIGIN
set-cookie: PHPSESSID=07e950bb5dd4306e55eda1c1d3b6e5e7; expires=Sun, 31-Oct-2021 00:14:50 GMT; Max-Age=3600; path=/; domain=hipeon.com; HttpOnly; SameSite=Lax
access-control-allow-origin: *
vary: User-Agent
x-ua-compatible: IE=edge
pragma: public
cache-control: public
HTTP/2 200
server: nginx/1.21.0
date: Sat, 30 Oct 2021 23:14:51 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
pragma: no-cache
cache-control: max-age=31536000
expires: Sun, 30 Oct 2022 23:14:51 GMT
report-to: {"group":"report-endpoint","max_age":10886400,"endpoints":[{"url":"https:\/\/www.hipeon.com\/"}]}
content-security-policy-report-only: font-src *.cloudflare.com *.cloudfront.net dntqejcgo2fkp.cloudfront.net *.yotpo.com *.google.com *.google.co.uk *.jsdelivr.net *.twitter.com *.tawk.to *.trustpilot.com *.gstatic.com *.typekit.net *.twimg.com *.trustedshops.com *.googleapis.com *.g.doubleclick.net www.hipeon.com *.fontawesome.com fonts.gstatic.com 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com *.twitter.com *.tawk.to *.google.co.uk *.cloudfront.net dntqejcgo2fkp.cloudfront.net *.yotpo.com 'self' 'unsafe-inline'; frame-ancestors *.twitter.com *.trustpilot.com *.google.co.uk *.tawk.to *.cloudfront.net dntqejcgo2fkp.cloudfront.net 'self'; frame-src geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.paypal.com www.sandbox.paypal.com player.vimeo.com *.twitter.com *.trustpilot.com *.google.co.uk *.tawk.to *.cloudfront.net dntqejcgo2fkp.cloudfront.net js.stripe.com m.stripe.com x.klarnacdn.net klarna.com *.weltpixel.com *.yotpo.com 'self' 'unsafe-inline'; img-src widgets.magentocommerce.com www.googleadservices.com www.google-analytics.com t.paypal.com www.paypal.com www.paypalobjects.com fpdbs.paypal.com fpdbs.sandbox.paypal.com *.vimeocdn.com s.ytimg.com *.cloudflare.com *.cloudfront.net dntqejcgo2fkp.cloudfront.net *.yotpo.com *.google.com *.google.co.uk *.klarna.com *.googleadservices.com *.google-analytics.com *.jsdelivr.net *.paypal.com *.twitter.com *.twimg.com *.ytimg.com 'self' data: *.lightemporium.com *.usercentrics.eu *.trustpilot.com *.g.doubleclick.net *.tawk.to cdn.jsdelivr.net 'self' 'unsafe-inline'; script-src assets.adobedtm.com geostag.cardinalcommerce.com 1eafstag.cardinalcommerce.com geoapi.cardinalcommerce.com 1eafapi.cardinalcommerce.com songbird.cardinalcommerce.com includestest.ccdc02.com www.googleadservices.com www.google-analytics.com www.paypal.com www.sandbox.paypal.com www.paypalobjects.com t.paypal.com s.ytimg.com video.google.com vimeo.com www.vimeo.com *.vimeocdn.com cdn-scripts.signifyd.com www.youtube.com *.hipeon.com *.cloudflare.com *.cloudfront.net dntqejcgo2fkp.cloudfront.net *.yotpo.com *.google.com *.google.co.uk *.tawk.to *.paypal.com *.googletagmanager.com *.jsdelivr.net *.twitter.com *.google-analytics.com *.twimg.com *.gstatic.com *.trustedshops.com *.usercentrics.eu *.fontawesome.com *.trustpilot.com *.g.doubleclick.net js.stripe.com m.stripe.com x.klarnacdn.net klarna.com cdn.jsdelivr.net 'self' 'unsafe-inline' 'unsafe-eval'; style-src getfirebug.com *.hipeon.com *.cloudflare.com *.cloudfront.net dntqejcgo2fkp.cloudfront.net *.yotpo.com *.google.com *.google.co.uk *.paypal.com *.jsdelivr.net *.googleapis.com *.twitter.com *.twimg.com *.gstatic.com *.typekit.net *.trustedshops.com *.usercentrics.eu *.fontawesome.com *.trustpilot.com *.g.doubleclick.net *.tawk.to fonts.googleapis.com cdn.jsdelivr.net 'self' 'unsafe-inline'; object-src *.cloudflare.com *.cloudfront.net *.yotpo.com dntqejcgo2fkp.cloudfront.net *.tawk.to 'self' 'unsafe-inline'; media-src 'self' 'unsafe-inline'; manifest-src *.hipeon.com *.cloudflare.com *.cloudfront.net dntqejcgo2fkp.cloudfront.net *.tawk.to 'self' 'unsafe-inline'; connect-src geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com *.cloudflare.com *.cloudfront.net dntqejcgo2fkp.cloudfront.net *.yotpo.com *.google.com *.google.co.uk *.twitter.com *.tawk.to *.paypal.com *.twimg.com *.jsdelivr.net *.trustpilot.com *.g.doubleclick.net *.google-analytics.com js.stripe.com m.stripe.com x.klarnacdn.net klarna.com wss://*.tawk.to 'self' 'unsafe-inline'; child-src *.hipeon.com *.cloudflare.com *.cloudfront.net dntqejcgo2fkp.cloudfront.net *.tawk.to 'self' 'unsafe-inline'; default-src *.cloudflare.com *.cloudfront.net *.yotpo.com dntqejcgo2fkp.cloudfront.net *.tawk.to embed.tawk.to/5bcf1f2a476c2f239ff5a249/default *.hipeon.com 'self' 'unsafe-inline' 'unsafe-eval'; base-uri *.cloudflare.com *.cloudfront.net dntqejcgo2fkp.cloudfront.net *.tawk.to 'self' 'unsafe-inline'; report-uri https://www.hipeon.com/; report-to report-endpoint;
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests;
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: CROSS-ORIGIN
set-cookie: PHPSESSID=937bb3c1307fb86bd817186a830c3197; expires=Sun, 31-Oct-2021 00:14:51 GMT; Max-Age=3600; path=/; domain=www.hipeon.com; HttpOnly; SameSite=Lax
vary: Accept-Encoding,User-Agent
access-control-allow-origin: *
x-ua-compatible: IE=edge
pragma: public
cache-control: public
|