HTTP/1.1 200 200 Server: ****** Date: Wed, 28 May 2025 10:18:28 GMT Content-Length: 0 Connection: keep-alive X-Frame-Options: SAMEORIGIN Frame-Options: SAMEORIGIN Content-Security-Policy: default-src * 'unsafe-inline' 'unsafe-eval' STRICT-TRANSPORT-SECURITY: max-age=16070400; includeSubDomains X-Application-Context: application Set-Cookie: JSESSIONID=EC3AC2E12B88249F596BAB17821FEE37; Path=/; httponly;SameSite=Lax; HttpOnly X-Content-Type-Options: nosniff X-XSS-Protection: 1;mode=block