HTTP/1.1 200 OK
Vary: Origin
Vary: Access-Control-Request-Method
Vary: Access-Control-Request-Headers
Last-Modified: Thu, 01 Jan 1970 00:00:01 GMT
Content-Length: 6335
Accept-Ranges: bytes
Content-Type: text/html
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Content-Type-Options: nosniff
X-XSS-Protection: 1 ; mode=block
Permissions-Policy: camera=(), fullscreen=(self), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), sync-xhr=()
Content-Security-Policy: default-src 'self'; frame-src 'self' data:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://storage.googleapis.com; style-src 'self' 'unsafe-inline'; img-src 'self' data:; font-src 'self' data:
Referrer-Policy: strict-origin-when-cross-origin
Set-Cookie: XSRF-TOKEN=411d8f24-7c70-4be8-8e64-a8ac95d0bd50; Path=/
Set-Cookie: XSRF-TOKEN=411d8f24-7c70-4be8-8e64-a8ac95d0bd50; Path=/