HTTP/1.1 200 OK
Date: Tue, 23 Apr 2024 19:39:28 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 37461
Connection: keep-alive
Vary: Origin
Set-Cookie: PLAY_SESSION=eyJhbGciOiJIUzI1NiJ9.eyJkYXRhIjp7ImNzcmZUb2tlbiI6IjUyNjhhNzQyZjFiNjhkZmNlZjEzYjM5MmMxMGY2ZTkyNGRiOWFjZTgtMTcxMzkwMTE2ODkzMS0xZWFiY2IzNmE5MTExZDYzMTQ4ZmMxOTMifSwiZXhwIjoxNzkxNjYxMTY4LCJuYmYiOjE3MTM5MDExNjgsImlhdCI6MTcxMzkwMTE2OH0.4b0zQcJRYJBpvVwLHXLLuV069Z85bMEErknSGPaWH7w; Max-Age=77760000; Expires=Sat, 10 Oct 2026 19:39:28 GMT; SameSite=Lax; Path=/; HTTPOnly
Referrer-Policy: origin-when-cross-origin, strict-origin-when-cross-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Security-Policy: script-src 'self' 'unsafe-inline' jquery.min.js *.gstatic.com *.iubenda.com *.firebaseio.com *.jsdelivr.net; style-src 'self' 'unsafe-inline' *.bootstrapcdn.com *.cloudflare.com *.rawgit.com *.iubenda.com *.googleapis.com *.jsdelivr.net; font-src 'self' *.cloudflare.com *.bootstrapcdn.com *.gstatic.com *.googleapis.com
X-Permitted-Cross-Domain-Policies: master-only