HTTP/1.1 301 Moved Permanently
Server: awselb/2.0
Date: Fri, 28 Jan 2022 09:59:05 GMT
Content-Type: text/html
Content-Length: 134
Connection: keep-alive
Location: https://dinebildeler.no:443/
HTTP/2 200
date: Fri, 28 Jan 2022 09:59:05 GMT
content-type: text/html; charset=UTF-8
set-cookie: AWSALB=aO1eVGXeJ3iY3tINmNLs0i+E91OxKnAdp8eGonBFcn9YOuXPFHY7wIbeCxhWC3/JeEYUB6N8yAcoxjefgd3k72rCjuuMTNSEB1b0ZVHYuD+QcpIA+Ut+PlcbTQC5; Expires=Fri, 04 Feb 2022 09:59:05 GMT; Path=/
set-cookie: AWSALBCORS=aO1eVGXeJ3iY3tINmNLs0i+E91OxKnAdp8eGonBFcn9YOuXPFHY7wIbeCxhWC3/JeEYUB6N8yAcoxjefgd3k72rCjuuMTNSEB1b0ZVHYuD+QcpIA+Ut+PlcbTQC5; Expires=Fri, 04 Feb 2022 09:59:05 GMT; Path=/; SameSite=None; Secure
vary: Accept-Encoding
report-to: {"group":"report-endpoint","max_age":10886400,"endpoints":[{"url":"https:\/\/eng.vdc.dev\/csp-report"}]}
content-security-policy: worker-src blob: bilxtra.global.ssl.fastly.net; font-src *.gstatic.com 'self' data: *.doubleclick.net *.facebook.com *.yotpo.com *.googleapis.com data: script.hotjar.com cdn.prod.bilxtra.vdc.dev cdn.bilxtra.no cdn.dinebildeler.no cdn.prod.dinebildeler.vdc.dev data: 'self' 'unsafe-inline'; form-action secure.authorize.net test.authorize.net geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com pilot-payflowlink.paypal.com *.yotpo.com 'self' 'unsafe-inline'; frame-ancestors 'self'; frame-src fast.amc.demdex.net *.adobe.com secure.authorize.net test.authorize.net geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.paypal.com www.sandbox.paypal.com pilot-payflowlink.paypal.com player.vimeo.com *.youtube.com https://www.google.com/recaptcha/ *.google.com *.doubleclick.net *.facebook.com *.yotpo.com *.dotdigital-pages.com *.dotdigital.com cdn.dnky.co webchat.dotdigital.com *.klarna.com c.paypal.com checkout.paypal.com assets.braintreegateway.com pay.google.com *.cardinalcommerce.com big.g.doubleclick.net vars.hotjar.com *.oculosdialog.com bilxtra.global.ssl.fastly.net *.issuu.com 'self' 'unsafe-inline'; img-src assets.adobedtm.com amcglobal.sc.omtrdc.net dpm.demdex.net cm.everesttech.net *.adobe.com widgets.magentocommerce.com data: www.googleadservices.com www.google-analytics.com www.paypalobjects.com t.paypal.com *.ftcdn.net *.behance.net www.paypal.com fpdbs.paypal.com fpdbs.sandbox.paypal.com *.vimeocdn.com i.ytimg.com 'self' data: *.google.com *.google.bg *.facebook.com *.facebook.net *.doubleclick.net *.yotpo.com *.klarna.com *.klarnaevt.com www.sandbox.paypal.com b.stats.paypal.com dub.stats.paypal.com assets.braintreegateway.com c.paypal.com checkout.paypal.com *.google.no *.google.se *.google.fi *.google.ro *.google.pl *.google.dk *.gstatic.com *.google-analytics.com *.googleadservices.com googleads.g.doubleclick.net *.hotjar.com *.hotjar.io bilxtra.wpcloud.trollweb.no *.sleeknote.com *.visualwebsiteoptimizer.com *.google.lt blob: bilxtra.global.ssl.fastly.net *.bing.com cdn.prod.bilxtra.vdc.dev cdn.bilxtra.no cdn.dinebildeler.no cdn.prod.dinebildeler.vdc.dev *.clarity.ms data: 'self' 'unsafe-inline'; script-src assets.adobedtm.com *.adobe.com secure.authorize.net test.authorize.net www.googleadservices.com www.google-analytics.com www.paypalobjects.com js.braintreegateway.com www.paypal.com geostag.cardinalcommerce.com 1eafstag.cardinalcommerce.com geoapi.cardinalcommerce.com 1eafapi.cardinalcommerce.com songbird.cardinalcommerce.com includestest.ccdc02.com www.sandbox.paypal.com t.paypal.com s.ytimg.com www.googleapis.com vimeo.com www.vimeo.com *.vimeocdn.com https://www.gstatic.com/recaptcha/ https://www.google.com/recaptcha/ *.google.com *.googletagmanager.com *.facebook.com *.facebook.net *.doubleclick.net *.yotpo.com *.trackedlink.net *.trackedweb.net *.dotdigital-pages.com cdn.dnky.co webchat.dotdigital.com *.klarna.com assets.braintreegateway.com c.paypal.com pay.google.com api.braintreegateway.com api.sandbox.braintreegateway.com client-analytics.braintreegateway.com client-analytics.sandbox.braintreegateway.com *.gstatic.com https://storage.googleapis.com/ https://api.mapbox.com/ *.google-analytics.com *.googleadservices.com static.hotjar.com script.hotjar.io *.clarity.ms *.sleeknote.com *.iconify.design *.visualwebsiteoptimizer.com *.googleapis.com bilxtra.global.ssl.fastly.net *.hotjar.com *.bing.com cdn.cookie-script.com cdn.prod.bilxtra.vdc.dev cdn.bilxtra.no cdn.dinebildeler.no cdn.prod.dinebildeler.vdc.dev *.google.lt *.youtube.com 'self' 'unsafe-inline' 'unsafe-eval'; style-src *.adobe.com *.googleapis.com *.doubleclick.net *.facebook.com *.yotpo.com cdn.dnky.co webchat.dotdigital.com unsafe-inline *.gstatic.com tagmanager.google.com bilxtra.wpcloud.trollweb.no bilxtra.global.ssl.fastly.net cdn.prod.bilxtra.vdc.dev cdn.bilxtra.no cdn.dinebildeler.no cdn.prod.dinebildeler.vdc.dev data: 'self' 'unsafe-inline'; object-src 'self' 'unsafe-inline'; media-src *.adobe.com data: 'self' 'unsafe-inline'; manifest-src 'self' 'unsafe-inline'; connect-src dpm.demdex.net amcglobal.sc.omtrdc.net www.google-analytics.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.sandbox.paypal.com www.paypalobjects.com www.paypal.com *.google-analytics.com *.facebook.com *.facebook.net *.yotpo.com *.trackedlink.net *.trackedweb.net *.dotdigital-pages.com webchat.dotdigital.com *.klarnaevt.com api.braintreegateway.com api.sandbox.braintreegateway.com client-analytics.braintreegateway.com client-analytics.sandbox.braintreegateway.com *.braintree-api.com https://storage.googleapis.com/ https://api.mapbox.com/ https://events.mapbox.com/ *.doubleclick.net *.klarna.com *.hotjar.com vc.hotjar.io surveystats.hotjar.io wss://*.hotjar.com *.sleeknote.com *.trollweb.no *.googleapis.com *.google.com *.mapbox.com bilxtra.global.ssl.fastly.net cdn.prod.bilxtra.vdc.dev cdn.bilxtra.no cdn.dinebildeler.no cdn.prod.dinebildeler.vdc.dev *.clarity.ms *.youtube.com 'self' 'unsafe-inline'; child-src assets.braintreegateway.com c.paypal.com http: https: blob: 'self' 'unsafe-inline'; default-src *.googleapis.com 'self' 'unsafe-inline' 'unsafe-eval'; base-uri 'self' 'unsafe-inline'; report-uri https://eng.vdc.dev/csp-report; report-to report-endpoint;
content-security-policy: upgrade-insecure-requests;
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-cache: hit cached
pragma: no-cache
expires: -1
cache-control: no-store, no-cache, must-revalidate, max-age=0
accept-ranges: bytes
|