Content-Length: | 23227 |
X-XSS-Protection: | 1; mode=block |
Content-Security-Policy: | default-src 'self' data: https: *.gstatic.com; script-src 'self' data: 'unsafe-inline' 'unsafe-eval' https: *.web2mobile.fr *.adnxs.com *.tradelab.fr *.twitter.com *.facebook.net *.twimg.com *.azame.net *.google-analytics.com *.infogreffe.nc *.infogreffe.fr *.facebook.com *.doubleclick.net; style-src 'self' 'unsafe-inline' *.amazonaws.com *.infogreffe.nc *.infogreffe.fr *.googleapis.com *.twitter.com *.regie.pro; img-src 'self' data: http: *.youtube.com https: *.web2mobile.fr *.adnxs.com *.tradelab.fr *.twitter.com *.facebook.net *.twimg.com *.azame.net *.google-analytics.com *.infogreffe.nc *.infogreffe.fr *.facebook.com *.doubleclick.net; frame-src 'self' data: https: *.web2mobile.fr *.adnxs.com *.tradelab.fr *.twitter.com *.facebook.net *.twimg.com *.azame.net *.google-analytics.com *.infogreffe.nc *.infogreffe.fr *.facebook.com *.doubleclick.net; connect-src 'self' https: *.regie.pro *.addthis.com *.web2mobile.fr |
X-Permitted-Cross-Domain-Policies: | none |
X-Frame-Options: | SAMEORIGIN |
X-Content-Security-Policy: | default-src 'self' data: https: *.gstatic.com; script-src 'self' data: 'unsafe-inline' 'unsafe-eval' https: *.web2mobile.fr *.adnxs.com *.tradelab.fr *.twitter.com *.facebook.net *.twimg.com *.azame.net *.google-analytics.com *.infogreffe.nc *.infogreffe.fr *.facebook.com *.doubleclick.net; style-src 'self' 'unsafe-inline' *.amazonaws.com *.infogreffe.nc *.infogreffe.fr *.googleapis.com *.twitter.com *.regie.pro; img-src 'self' data: http: *.youtube.com https: *.web2mobile.fr *.adnxs.com *.tradelab.fr *.twitter.com *.facebook.net *.twimg.com *.azame.net *.google-analytics.com *.infogreffe.nc *.infogreffe.fr *.facebook.com *.doubleclick.net; frame-src 'self' data: https: *.web2mobile.fr *.adnxs.com *.tradelab.fr *.twitter.com *.facebook.net *.twimg.com *.azame.net *.google-analytics.com *.infogreffe.nc *.infogreffe.fr *.facebook.com *.doubleclick.net; connect-src 'self' https: *.regie.pro *.addthis.com *.web2mobile.fr |
Expires: | 0 |
Keep-Alive: | timeout=5, max=600 |
Pragma: | no-cache |
Date: | Tue, 12 Jun 2018 12:07:51 GMT |
X-WebKit-CSP: | default-src 'self' data: https: *.gstatic.com; script-src 'self' data: 'unsafe-inline' 'unsafe-eval' https: *.web2mobile.fr *.adnxs.com *.tradelab.fr *.twitter.com *.facebook.net *.twimg.com *.azame.net *.google-analytics.com *.infogreffe.nc *.infogreffe.fr *.facebook.com *.doubleclick.net; style-src 'self' 'unsafe-inline' *.amazonaws.com *.infogreffe.nc *.infogreffe.fr *.googleapis.com *.twitter.com *.regie.pro; img-src 'self' data: http: *.youtube.com https: *.web2mobile.fr *.adnxs.com *.tradelab.fr *.twitter.com *.facebook.net *.twimg.com *.azame.net *.google-analytics.com *.infogreffe.nc *.infogreffe.fr *.facebook.com *.doubleclick.net; frame-src 'self' data: https: *.web2mobile.fr *.adnxs.com *.tradelab.fr *.twitter.com *.facebook.net *.twimg.com *.azame.net *.google-analytics.com *.infogreffe.nc *.infogreffe.fr *.facebook.com *.doubleclick.net; connect-src 'self' https: *.regie.pro *.addthis.com *.web2mobile.fr |
Liferay-Portal: | Liferay Portal Enterprise Edition 6.1.20 EE (Paton / Build 6120 / July 31, 2012) |
Set-Cookie: | JSESSIONID=02AE5FC5A9792E8907CC82C1731ABBEC; Path=/; Secure; HttpOnly;HttpOnly;Secure, GUEST_LANGUAGE_ID=fr_FR; Expires=Wed, 12-Jun-2019 12:07:51 GMT; Path=/; Secure;HttpOnly;Secure, COOKIE_SUPPORT=true; Expires=Wed, 12-Jun-2019 12:07:51 GMT; Path=/; Secure;HttpOnly;Secure, GUEST_LANGUAGE_ID=fr_FR; Expires=Wed, 12-Jun-2019 12:07:52 GMT; Path=/; Secure;HttpOnly;Secure, COOKIE_SUPPORT=true; Expires=Wed, 12-Jun-2019 12:07:52 GMT; Path=/; Secure;HttpOnly;Secure, BIGipServer~LAN-LB-Infogreffe-95~POO_Infogref_Prod_8040_LFRAY=rd4o00000000000000000000ffffac1a29b1o8041; path=/;HttpOnly;Secure, BIGipServer~DMZ-Extranet-46~POO_Infogref_Prod_FRONT_7001=rd1o00000000000000000000ffffac164caeo7001; path=/ |
Strict-Transport-Security: | max-age=31536000; includeSubDomains; preload |
Server: | Apache-Coyote/1.1 |
Connection: | Keep-Alive |
Access-Control-Allow-Methods: | POST, GET, OPTIONS, DELETE, PUT |
Referrer-Policy: | strict-origin |
X-Content-Type-Options: | nosniff |
Content-Encoding: | gzip |
ETag: | "413b7c11" |
Cache-Control: | no-cache |
Access-Control-Allow-Headers: | x-requested-with, Content-Type, origin, authorization, accept |
Content-Type: | text/html;charset=UTF-8 |