X-Content-Type-Options: nosniff
Transfer-Encoding: chunked
Cache-Control: public, max-age=0
X-Drupal-Cache: MISS
X-Content-Security-Policy: default-src 'self'; script-src *.gstatic.com *.google.com *.google-analytics.com *.twitter.com *.facebook.net *.googleapis.com 'unsafe-inline' 'self' 'unsafe-eval' cdn.jsdelivr.net; style-src 'self' 'unsafe-inline' *.googleapis.com *.google.com cdn.jsdelivr.net; img-src * data:; media-src 'self' *.youtube.com *.vimeo.com; frame-src *.google.com *.twitter.com 'self' ryk.no *.ryk.no *.facebook.com *.youtube.com *.vimeo.com; font-src *.gstatic.com 'self' cdn.jsdelivr.net; report-uri /admin/config/system/seckit/csp-report
Etag: "1518370265-0"
Content-Language: nb
HTTP/1.1 200 OK
X-Powered-By: PHP/5.6.33-0+deb8u1
Last-Modified: Sun, 11 Feb 2018 17:31:05 GMT
Content-Type: text/html; charset=utf-8
Content-Security-Policy: default-src 'self'; script-src *.gstatic.com *.google.com *.google-analytics.com *.twitter.com *.facebook.net *.googleapis.com 'unsafe-inline' 'self' 'unsafe-eval' cdn.jsdelivr.net; style-src 'self' 'unsafe-inline' *.googleapis.com *.google.com cdn.jsdelivr.net; img-src * data:; media-src 'self' *.youtube.com *.vimeo.com; frame-src *.google.com *.twitter.com 'self' ryk.no *.ryk.no *.facebook.com *.youtube.com *.vimeo.com; font-src *.gstatic.com 'self' cdn.jsdelivr.net; report-uri /admin/config/system/seckit/csp-report
Date: Sun, 11 Feb 2018 17:31:05 GMT
Expires: Sun, 19 Nov 1978 05:00:00 GMT
X-Generator: Drupal 7 (http://drupal.org)
Server: Apache/2.4.10 (Debian) SVN/1.8.10 mod_fcgid/2.3.9 OpenSSL/1.0.1t
X-XSS-Protection: 0
X-WebKit-CSP: default-src 'self'; script-src *.gstatic.com *.google.com *.google-analytics.com *.twitter.com *.facebook.net *.googleapis.com 'unsafe-inline' 'self' 'unsafe-eval' cdn.jsdelivr.net; style-src 'self' 'unsafe-inline' *.googleapis.com *.google.com cdn.jsdelivr.net; img-src * data:; media-src 'self' *.youtube.com *.vimeo.com; frame-src *.google.com *.twitter.com 'self' ryk.no *.ryk.no *.facebook.com *.youtube.com *.vimeo.com; font-src *.gstatic.com 'self' cdn.jsdelivr.net; report-uri /admin/config/system/seckit/csp-report
Vary: Cookie,Accept-Encoding