HTTP/1.1 200 200 Content-Length: 0 Connection: keep-alive Server: nginx Date: Sun, 18 May 2025 06:50:37 GMT X-Application-Context: application Set-Cookie: JSESSIONID=914F6294D6A3B9366CA2A6DDFF3AAB88; Path=/; HttpOnly X-Frame-Options: SAMEORIGIN Frame-Options: SAMEORIGIN Referrer-Policy: strict-origin-when-cross-origin X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff X-Permitted-Cross-Domain-Policies: master-only Strict-Transport-Security: max-age=31536000;includeSubdomains; preload X-Download-Options: SAMEORIGIN Content-Security-Policy: default-src * 'unsafe-inline' 'unsafe-eval' data: https: ;frame-ancestors 'self'