dropbox.com

Status: 200
Server: nginx
Date: Wed, 05 Jun 2019 08:10:35 GMT
Content-type: text/html; charset=utf-8
Vary: Accept-Encoding
Cache-control: no-cache
Content-security-policy: script-src 'unsafe-eval' https://www.dropbox.com/static/compiled/js/ https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/compiled/js/ https://www.dropboxstatic.com/static/compiled/js/ https://cfl.dropboxstatic.com/static/js/ https://www.dropboxstatic.com/static/js/ https://cfl.dropboxstatic.com/static/previews/ https://www.dropboxstatic.com/static/previews/ https://cfl.dropboxstatic.com/static/api/ https://www.dropboxstatic.com/static/api/ https://cfl.dropboxstatic.com/static/cms/ https://www.dropboxstatic.com/static/cms/ 'nonce-kqKWgrpKYWSEghxFCDcG' ; img-src https://* data: blob: ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; default-src 'none' ; frame-src https://* carousel://* dbapi-6://* dbapi-7://* dbapi-8://* itms-apps://* itms-appss://* ; worker-src https://www.dropbox.com/static/serviceworker/ blob: ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; connect-src https://* ws://127.0.0.1:*/ws ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://flash.dropboxstatic.com https://swf.dropboxstatic.com https://dbxlocal.dropboxstatic.com ; media-src https://* blob: ; font-src https://* data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://login.yahoo.com/ ; base-uri 'self' ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist
script-src 'unsafe-eval' 'strict-dynamic' 'nonce-kqKWgrpKYWSEghxFCDcG' 'nonce-1JaLxfDhu6QezmKEgHpk' ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic
Dropbox-streaming: V=1
Pragma: no-cache
Referrer-policy: origin-when-cross-origin
Set-cookie: cookie_notif=seen; expires=Mon, 03 Jun 2024 08:10:35 GMT; Path=/; secure
__Host-ss=gbjOMBAIOU; expires=Sat, 04 Jun 2022 08:10:35 GMT; httponly; Path=/; SameSite=strict; secure
locale=it; Domain=dropbox.com; expires=Mon, 03 Jun 2024 08:10:35 GMT; Path=/; secure
gvc=MjYyNTU3MzY0ODkzOTYwODA5ODM3MTc2MDM1NjkzNjg1MTk2NzM1; expires=Mon, 03 Jun 2024 08:10:35 GMT; httponly; Path=/; secure
flash=; Domain=dropbox.com; expires=Wed, 05 Jun 2019 08:10:35 GMT; Path=/; secure
puc=; expires=Wed, 05 Jun 2019 08:10:35 GMT; httponly; Path=/; secure
bang=; Domain=dropbox.com; expires=Wed, 05 Jun 2019 08:10:35 GMT; Path=/; secure
t=aZS68OZLpIjsUUiMQiHaDN6n; Domain=dropbox.com; expires=Sat, 04 Jun 2022 08:10:35 GMT; httponly; Path=/; secure
__Host-js_csrf=aZS68OZLpIjsUUiMQiHaDN6n; expires=Sat, 04 Jun 2022 08:10:35 GMT; Path=/; secure
X-content-type-options: nosniff
X-dropbox-request-id: 46b087d61a26528bbf094d665b928766
X-frame-options: DENY
X-xss-protection: 1; mode=block
Strict-transport-security: max-age=15552000; includeSubDomains
Content-encoding: gzip