HTTP/1.1 404 Not Found
Server: nginx
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=60, public
date: Sat, 27 Apr 2024 00:57:51 GMT
Content-Security-Policy: base-uri localhost; default-src 'self' http://3.239.233.219 https://3.239.233.219 https://stara-institucional-laravel-hml.s3.amazonaws.com/ stara-institucional-laravel-hml.s3.amazonaws.com stara-institucional-laravel-prd.s3.amazonaws.com https://td.doubleclick.net https://*.smooch.io wss://*.smooch.io https://*.config.smooch.io https://cdn.smooch.io https://sketchfab.com api.bigdatacloud.net *.webloader.smooch.io wss://*.hotjar.com https://*.hotjar.io fonts.gstatic.com *.googlesyndication.com googleads.g.doubleclick.net analytics.tiktok.com www.facebook.com www.youtube.com youtube.com youtu.be googleads.g.doubleclick.net plugin.handtalk.me translation-v3.handtalk.me stackpath.bootstrapcdn.com via.placeholder.com gravatar.com privacyportal-br-cdn.onetrust.com https://*.hotjar.com res.cloudinary.com www.google.com.br www.googletagmanager.com www.google-analytics.com stats.g.doubleclick.net privacyportal-br.onetrust.com www.google.com geolocation.onetrust.com/cookieconsentpub/v1/geo/location cdn.cookielaw.org unpkg.com https://*.googleapis.com localhost localhost ajax.googleapis.com www.gstatic.com gstatic.com gstatic.com data:; font-src 'self' cdn.smooch.io use.typekit.net data: privacyportal-br-cdn.onetrust.com fonts.gstatic.com maxcdn.bootstrapcdn.com; frame-ancestors 'self' localhost stara.my.site.com *.salesforce.com; object-src 'self' localhost localhost; script-src 'self' cdn.smooch.io https://*.smooch.io https://cdn.privacytools.com.br analytics.tiktok.com googleads.g.doubleclick.net stackpath.bootstrapcdn.com *.googlesyndication.com www.googleadservices.com code.jquery.com plugin.handtalk.me cdn.datatables.net cdn.jsdelivr.net privacyportal-br-cdn.onetrust.com webchat.leanbot.com.br cdnjs.cloudflare.com cdn.cookielaw.org googletagmanager.com script.hotjar.com static.hotjar.com tagmanager.google.com www.googletagmanager.com fonts.googleapis.com www.google-analytics.com/analytics.js www.google.com/recaptcha/api.js ajax.googleapis.com connect.facebook.net www.gstatic.com gstatic.com gstatic.com cdn.polyfill.io unpkg.com https://*.googleapis.com localhost localhost 'unsafe-inline' 'unsafe-eval'; img-src 'self' * data: blob:; style-src 'self' cdn.smooch.io https://cdn.privacytools.com.br www.googletagmanager.com https://*.googleapis.com cdn.datatables.net privacyportal-br-cdn.onetrust.com stackpath.bootstrapcdn.com maxcdn.bootstrapcdn.com fonts.googleapis.com cdnjs.cloudflare.com www.google.com/recaptcha cdn.jsdelivr.net 'unsafe-inline'; report-uri /csp_violation_reporting_endpoint; report-to PolicyName; upgrade-insecure-requests;
X-XSS-Protection: 1; mode=block
Referrer-Policy: same-origin
Strict-Transport-Security: max-age=31536000; includeSubDomains
Permissions-Policy: accelerometer=self,autoplay=self,camera=self,encrypted-media=self,fullscreen=self,geolocation=self,gyroscope=self,magnetometer=self,microphone=self,midi=self,payment=self,picture-in-picture=self,sync-xhr=self,usb=self
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,PUT,PATCH,DELETE,OPTIONS
Access-Control-Allow-Headers: Content-Type,Authorization,X-Requested-With,X-CSRF-Token
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff