Date: Wed, 25 Nov 2020 00:31:31 GMT
Vary: Host,Accept-Encoding
Set-Cookie: ADRUM_BTa="R:0|g:270fbe91-61d4-49dd-8b95-5c012a38b1e4|n:customer1_4bd198a3-d865-4590-b8fa-3e01788f4b7b"; Version=1; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/; Secure
Set-Cookie: ADRUM_BTa="R:0|g:2b92c72d-cf96-4d4d-a340-fc3d91867708"; Version=1; Max-Age=30; Expires=Wed, 25-Nov-2020 00:32:01 GMT; Path=/; Secure
Set-Cookie: ADRUM_BTa="R:0|g:2b92c72d-cf96-4d4d-a340-fc3d91867708|n:customer1_4bd198a3-d865-4590-b8fa-3e01788f4b7b"; Version=1; Max-Age=30; Expires=Wed, 25-Nov-2020 00:32:01 GMT; Path=/; Secure
Set-Cookie: JSESSIONID=E2E3852E924789493A09CC66129B0A14; Path=/; Secure; HttpOnly
Set-Cookie: locale_V6=en_GB; Version=1; Domain=.burtsbees.co.uk; Max-Age=31556926; Expires=Thu, 25-Nov-2021 06:20:17 GMT; Path=/; SameSite=None; Secure
Set-Cookie: csrf_token=76076985758497062201; Secure; HttpOnly
Set-Cookie: ADRUM_BT1="R:0|i:2835"; Version=1; Max-Age=30; Expires=Wed, 25-Nov-2020 00:32:01 GMT; Path=/; Secure
Set-Cookie: ADRUM_BT1="R:0|i:2835|e:14"; Version=1; Max-Age=30; Expires=Wed, 25-Nov-2020 00:32:01 GMT; Path=/; Secure
Set-Cookie: NSC_mc_wtsw_efgbvmu_xfctsw_81_S=ffffffff09031f2e45525d5f4f58455e445a4a423661;expires=Wed, 25-Nov-2020 03:31:31 GMT;path=/;secure;httponly
Cache-Control: private, max-age=0, no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Content-Security-Policy: child-src 'self' https://www.googletagmanager.com https://*.liveperson.net https://cdn.appdynamics.com https://*.lpsnmedia.net https://www.facebook.com https://connect.facebook.net https://*.google.com https://widget.trustpilot.com https://*.doubleclick.net https://*.criteo.com https://static.criteo.net https://www.youtube.com https://www.zenaps.com https://www.instagram.com https://ln-rules.rewardstyle.com https://www.shoplooks.com https://vars.hotjar.com https://*.akamaihd.net https://*.translate.naver.net https://player.vimeo.com https://*.recaptcha.net https://tr.snapchat.com; connect-src 'self' https://*.thcdn.com https://*.eum-appdynamics.com https://*.pingdom.net https://*.doubleclick.net https://*.google-analytics.com https://capture.trackjs.com https://fp.zenaps.com https://www.facebook.com https://*.google.com https://*.thehut.net https://the.sciencebehindecommerce.com https://*.akamaihd.net https://*.googleapis.com https://*.trustpilot.com https://*.doubleclick.net https://*.bing.com https://connect.facebook.net https://*.parcellab.com https://ct.pinterest.com https://privacyportal-eu.onetrust.com; font-src 'self' data: https://*.thcdn.com https://fp.zenaps.com https://cdnjs.cloudflare.com https://fonts.gstatic.com https://fonts.googleapis.com; form-action 'self' https://www.facebook.com https://www.burtsbees.co.uk https://m.burtsbees.co.uk https://checkout.burtsbees.co.uk https://connect.facebook.net https://tr.snapchat.com; frame-ancestors 'self'; img-src 'self' data: https://*.thcdn.com https://col.eum-appdynamics.com https://usage.trackjs.com https://*.lpsnmedia.net https://*.doubleclick.net https://www.google-analytics.com https://*.google.com https://cx.atdmt.com https://www.zenaps.com https:; report-uri https://csp.thehut.net/cspReport.txt; script-src 'self' 'unsafe-eval' 'unsafe-inline' data: https://*.thcdn.com https://*.thehut.net https://rum-static.pingdom.net https://*.liveperson.net https://col.eum-appdynamics.com https://*.lpsnmedia.net https://cdn.appdynamics.com https://*.doubleclick.net https://geolocation.onetrust.com https://www.googletagmanager.com https://cdnjs.cloudflare.com https://fp.zenaps.com https://www.youtube.com https://www.google-analytics.com https://*.google.com https://connect.facebook.net https://bat.bing.com https://widget.trustpilot.com https://s.ytimg.com https://www.googletagservices.com https://*.googleapis.com https://ssl.trustpilot.com https://www.facebook.com https://www.googleadservices.com https://*.gstatic.com https://*.gstatic.cn https://www.dwin1.com https://cdn.trackjs.com https://seal.digicert.com https://*.criteo.com https://static.criteo.net https://remote.captcha.com https://ssl.bing.com https://script.hotjar.com https://ssl.google-analytics.com https://ln-rules.rewardstyle.com https://*.recaptcha.net https://*.sciencebehindecommerce.com https://static.hotjar.com https://*.akamaihd.net https://*.microsofttranslator.com https://google.com https://*.trustpilot.com https://*.translate.naver.net https://*.doubleclick.net https://*.google-analytics.com https://*.baidu.com https://sc-static.net https://*.google.co.uk https://google.co.uk https://s.pinimg.com https://static.bytedance.com https://s0.ipstatp.com https://s16.tiktokcdn.com; style-src 'self' 'unsafe-inline' https://*.thcdn.com https://*.google.com https://*.googleapis.com https://fp.zenaps.com https://cdnjs.cloudflare.com https://*.googleapis.com https://*.translate.naver.net https://*.microsofttranslator.com https://cdn.parcellab.com; upgrade-insecure-requests; report-to report-endpoint
Referrer-Policy: unsafe-url
X-XSS-Protection: 1; mode=block; report=/xssProtection.txt
Report-To: {"group":"report-endpoint","max_age":86400,"endpoints":[{"url":"https://csp.thehut.net/cspReport.txt","priority":1,"weight":1}],"include_subdomains":true}
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html;charset=UTF-8
x-encoded-content-encoding: gzip
|