DYNAMIC
8434e5885fb04167-LHR
no-store, no-cache, must-revalidate, max-age=0
keep-alive
gzip
text/html; charset=UTF-8
Wed, 10 Jan 2024 12:24:23 GMT
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FwxEmrbvoP65jJkiEUvVh4Tc83XO8ufQKbd%2FY96EqkM1Ta91FxRMRVsXxUvbACH0elJ8izv3UeAsZuYEDPwRXFgS87Er8zp0qklaWNaPm2YPpzcJkNciTdobZhq52hNGd3R6V%2Fay7Kubbg%3D%3D"}],"group":"cf-nel","max_age":604800}
cloudflare
h3=":443"; ma=86400
font-src https://fonts.gstatic.com cdn.stamped.io *.sagepay.com *.gstatic.com *.stape.io https://cdnjs.cloudflare.com www.searchanise.com *.searchserverapi.com cdn1.stamped.io stamped.io maxcdn.bootstrapcdn.com data: 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com *.sagepay.com www.searchanise.com *.searchserverapi.com *.twitter.com 'self' 'unsafe-inline'; frame-ancestors 'self'; frame-src fast.amc.demdex.net *.adobe.com bid.g.doubleclick.net *.youtube.com *.youtube-nocookie.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com player.vimeo.com https://www.google.com/recaptcha/ https://www.google.com https://widget.trustpilot.com https://vars.hotjar.com https://bellabathroomsltd.freshdesk.com/ https://wchat.freshchat.com *.freshchat.com https://www.youtube.com/ cdn.stamped.io *.sagepay.com *.google.com *.google.com.ua *.google.co.uk *.google.nl *.google.be *.google.de *.stape.io www.searchanise.com *.searchserverapi.com *.twitter.com 'self' 'unsafe-inline'; img-src assets.adobedtm.com amcglobal.sc.omtrdc.net dpm.demdex.net cm.everesttech.net *.adobe.com widgets.magentocommerce.com data: www.googleadservices.com www.google-analytics.com googleads.g.doubleclick.net www.google.com bid.g.doubleclick.net analytics.google.com www.googletagmanager.com *.ftcdn.net *.behance.net *.vimeocdn.com i.ytimg.com *.youtube.com validator.swagger.io https://www.bellabathrooms.co.uk https://bellabathrooms.co.uk http://www.bellabathrooms.co.uk http://bellabathrooms.co.uk https://www.sagepay.co.uk https://www.opayo.co.uk cdn.stamped.io *.paypal.com *.sagepay.com ebizmarts-website.s3.amazonaws.com *.google.com *.google.com.ua *.google.co.uk *.google.nl *.google.be *.google.de *.gstatic.com *.doubleclick.net *.stape.io *.twitter.com *.twimg.com www.google.ru www.searchanise.com *.searchserverapi.com s3.amazonaws.com cdn1.stamped.io stamped.io maps.gstatic.com data: 'self' 'unsafe-inline'; script-src assets.adobedtm.com *.adobe.com www.googleadservices.com www.google-analytics.com googleads.g.doubleclick.net analytics.google.com www.googletagmanager.com *.newrelic.com *.nr-data.net geostag.cardinalcommerce.com 1eafstag.cardinalcommerce.com geoapi.cardinalcommerce.com 1eafapi.cardinalcommerce.com songbird.cardinalcommerce.com includestest.ccdc02.com s.ytimg.com www.googleapis.com vimeo.com www.vimeo.com *.vimeocdn.com *.youtube.com https://www.gstatic.com/recaptcha/ https://www.google.com/recaptcha/ https://apis.google.com https://www.google.com https://www.gstatic.com https://wchat.freshchat.com http://cdnjs.cloudflare.com https://cdnjs.cloudflare.com http://static.cloudflareinsights.com https://static.cloudflareinsights.com https://static.hotjar.com https://script.hotjar.com http://widget.trustpilot.com https://widget.trustpilot.com https://s3.amazonaws.com/assets.freshdesk.com/widget/freshwidget.js https://searchserverapi.com cdn.stamped.io *.sagepay.com *.google.com *.google.com.ua *.google.co.uk *.google.nl *.google.be *.google.de *.gstatic.com *.googletagmanager.com *.doubleclick.net *.stape.io searchanise-ef84.kxcdn.com s3.amazonaws.com ajax.aspnetcdn.com www.searchanise.com *.searchserverapi.com *.searchanise.com api.amplitude.com *.twitter.com *.twimg.com cdn1.stamped.io stamped.io maps.googleapis.com www.gstatic.com 'self' 'unsafe-inline' 'unsafe-eval'; style-src *.adobe.com http://cdnjs.cloudflare.com https://cdnjs.cloudflare.com https://fonts.googleapis.com http://fonts.googleapis.com https://s3.amazonaws.com/assets.freshdesk.com/widget/freshwidget.css https://wchat.freshchat.com cdn.stamped.io *.sagepay.com *.googleapis.com *.googletagmanager.com *.stape.io www.searchanise.com *.searchserverapi.com searchanise-ef84.kxcdn.com s3.amazonaws.com *.twitter.com ton.twimg.com cdn1.stamped.io stamped.io www.gstatic.com maxcdn.bootstrapcdn.com 'self' 'unsafe-inline'; object-src 'self' 'unsafe-inline'; media-src *.adobe.com cdn.stamped.io cdn1.stamped.io stamped.io 'self' 'unsafe-inline'; manifest-src 'self' 'unsafe-inline'; connect-src dpm.demdex.net amcglobal.sc.omtrdc.net www.google-analytics.com www.googleadservices.com analytics.google.com www.googletagmanager.com *.newrelic.com *.nr-data.net vimeo.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com https://in.hotjar.com https://vc.hotjar.io https://www.google-analytics.com https://stats.g.doubleclick.net cdn.stamped.io *.paypal.com *.sagepay.com *.google-analytics.com *.google.com *.stape.io api.amplitude.com stats.g.doubleclick.net cdn1.stamped.io stamped.io 'self' 'unsafe-inline'; child-src http: https: blob: 'self' 'unsafe-inline'; default-src 'self' 'unsafe-inline' 'unsafe-eval'; base-uri 'self' 'unsafe-inline';
-1
Wed, 10 Jan 2024 10:37:09 GMT
no-cache
max-age=0
Accept-Encoding
nosniff
SAMEORIGIN
1; mode=block
|