HTTP/1.1 200 200 Server: ****** Date: Wed, 25 Dec 2024 13:23:39 GMT Content-Length: 0 Connection: keep-alive X-Frame-Options: SAMEORIGIN Frame-Options: SAMEORIGIN Content-Security-Policy: default-src * 'unsafe-inline' 'unsafe-eval' STRICT-TRANSPORT-SECURITY: max-age=16070400; includeSubDomains X-Application-Context: application Set-Cookie: JSESSIONID=F8CABDD64CA881379D04980A83EE5ACE; Path=/; httponly;SameSite=Lax; HttpOnly X-Content-Type-Options: nosniff X-XSS-Protection: 1;mode=block