HTTP/1.1 301 Moved Permanently
Date: Sun, 31 Oct 2021 17:50:36 GMT
Server: Apache
Location: http://www.serenityshop.it/
Content-Type: text/html; charset=iso-8859-1
HTTP/1.1 301 Moved Permanently
Date: Sun, 31 Oct 2021 17:50:37 GMT
Server: Apache
Location: http://www.serenityshop.it/it/
Content-Type: text/html; charset=iso-8859-1
HTTP/1.1 301 301
Date: Sun, 31 Oct 2021 17:50:37 GMT
Server: Apache
Content-Security-Policy: default-src 'none' ; base-uri 'none' ; form-action 'self' 'unsafe-inline' https://secure.ogone.com ; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://static.hotjar.com https://script.hotjar.com blob: *.googleapis.com *.abtasty.com https://cdn.segment.com/analytics.js/ https://cdn.mxpnl.com/libs/ https://*.mixpanel.com https://www.googletagmanager.com https://tagmanager.google.com https://www.google-analytics.com https://ssl.google-analytics.com http://script.crazyegg.com/ https://use.typekit.net https://cl.avis-verifies.com/ https://sdk.privacy-center.org/ https://sibautomation.com/ https://*.teads.tv/ https://bat.bing.com/ https://www.youtube.com https://s.ytimg.com https://amplify.outbrain.com/ https://*.go-mpulse.net https://dev.visualwebsiteoptimizer.com https://chimpstatic.com https://connect.facebook.net https://dpm.zebestof.com https://secure.adnxs.com https://fo-api.omnitagjs.com/ https://tags.digital-metric.com/ https://secure.adnxs.com/ https://s2.adform.net/ https://track.adform.net https://analytics.digital-metric.com ; child-src https://vars.hotjar.com 'self' blob: ; connect-src 'self' https://*.hotjar.com:* https://vc.hotjar.io:* wss://*.hotjar.com *.abtasty.com *.flagship.io https://api.segment.io https://*.mixpanel.com https://www.google-analytics.com https://awsapis3.netreviews.eu/ https://api.privacy-center.org/ https://*.sendinblue.com/ https://*.teads.tv/ ; font-src 'self' https://script.hotjar.com blob: data: *.googleapis.com *.gstatic.com *.abtasty.com https://fonts.gstatic.com https://use.typekit.net https://cl.avis-verifies.com/ ; frame-src 'self' https://vars.hotjar.com https://cl.avis-verifies.com https://sibautomation.com/ https://www.youtube.com https://www.google.com https://dpm.zebestof.com https://aax-eu.amazon-adsystem.com ; img-src 'self' https://script.hotjar.com blob: data: *.abtasty.com *.amazonaws.com *.cloudfront.net https://www.googletagmanager.com https://ssl.gstatic.com https://www.gstatic.com https://www.google-analytics.com https://ssl.google-analytics.com https://cl.avis-verifies.com https://sdk.privacy-center.org/ https://*.teads.tv/ https://bat.bing.com/ https://dev.visualwebsiteoptimizer.com https://*.facebook.com/tr/ https://stats.g.doubleclick.net https://www.google.de/ads/ https://dpm.zebestof.com https://analytics.digital-metric.com/ ; style-src 'self' 'unsafe-inline' *.gstatic.com *.abtasty.com *.googleapis.com https://tagmanager.google.com https://fonts.googleapis.com https://use.typekit.net https://p.typekit.net ; media-src 'self' ; object-src 'self' ; manifest-src 'self' ; frame-ancestors 'self' ; block-all-mixed-content;
Referrer-Policy: strict-origin-when-cross-origin
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Access-Control-Allow-Origin: https://secure.ogone.com
Strict-Transport-Security: max-age=3600; includeSubDomains
Expect-CT: enforce, max-age=86400
Set-Cookie: JSESSIONID=B158FDE96C0959CC6DA2684F1878933C.app1; Path=/; HttpOnly; SameSite=None
Location: https://www.serenityshop.it/it/
HTTP/1.1 302 302
Date: Sun, 31 Oct 2021 17:50:38 GMT
Server: Apache
Content-Security-Policy: default-src 'none' ; base-uri 'none' ; form-action 'self' 'unsafe-inline' https://secure.ogone.com ; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://static.hotjar.com https://script.hotjar.com blob: *.googleapis.com *.abtasty.com https://cdn.segment.com/analytics.js/ https://cdn.mxpnl.com/libs/ https://*.mixpanel.com https://www.googletagmanager.com https://tagmanager.google.com https://www.google-analytics.com https://ssl.google-analytics.com http://script.crazyegg.com/ https://use.typekit.net https://cl.avis-verifies.com/ https://sdk.privacy-center.org/ https://sibautomation.com/ https://*.teads.tv/ https://bat.bing.com/ https://www.youtube.com https://s.ytimg.com https://amplify.outbrain.com/ https://*.go-mpulse.net https://dev.visualwebsiteoptimizer.com https://chimpstatic.com https://connect.facebook.net https://dpm.zebestof.com https://secure.adnxs.com https://fo-api.omnitagjs.com/ https://tags.digital-metric.com/ https://secure.adnxs.com/ https://s2.adform.net/ https://track.adform.net https://analytics.digital-metric.com ; child-src https://vars.hotjar.com 'self' blob: ; connect-src 'self' https://*.hotjar.com:* https://vc.hotjar.io:* wss://*.hotjar.com *.abtasty.com *.flagship.io https://api.segment.io https://*.mixpanel.com https://www.google-analytics.com https://awsapis3.netreviews.eu/ https://api.privacy-center.org/ https://*.sendinblue.com/ https://*.teads.tv/ ; font-src 'self' https://script.hotjar.com blob: data: *.googleapis.com *.gstatic.com *.abtasty.com https://fonts.gstatic.com https://use.typekit.net https://cl.avis-verifies.com/ ; frame-src 'self' https://vars.hotjar.com https://cl.avis-verifies.com https://sibautomation.com/ https://www.youtube.com https://www.google.com https://dpm.zebestof.com https://aax-eu.amazon-adsystem.com ; img-src 'self' https://script.hotjar.com blob: data: *.abtasty.com *.amazonaws.com *.cloudfront.net https://www.googletagmanager.com https://ssl.gstatic.com https://www.gstatic.com https://www.google-analytics.com https://ssl.google-analytics.com https://cl.avis-verifies.com https://sdk.privacy-center.org/ https://*.teads.tv/ https://bat.bing.com/ https://dev.visualwebsiteoptimizer.com https://*.facebook.com/tr/ https://stats.g.doubleclick.net https://www.google.de/ads/ https://dpm.zebestof.com https://analytics.digital-metric.com/ ; style-src 'self' 'unsafe-inline' *.gstatic.com *.abtasty.com *.googleapis.com https://tagmanager.google.com https://fonts.googleapis.com https://use.typekit.net https://p.typekit.net ; media-src 'self' ; object-src 'self' ; manifest-src 'self' ; frame-ancestors 'self' ; block-all-mixed-content;
Referrer-Policy: strict-origin-when-cross-origin
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Access-Control-Allow-Origin: https://secure.ogone.com
Strict-Transport-Security: max-age=3600; includeSubDomains
Expect-CT: enforce, max-age=86400
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Pragma: no-cache
Cache-Control: no-cache, no-store
Location: ./de/index.html
|