HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Sat, 05 Sep 2020 07:52:21 GMT
Content-Type: text/html
Content-Length: 183
Connection: keep-alive
Location: https://hdsp.co/
X-Cache: Redirect from cloudfront
Via: 1.1 c855a9a9a914304d480b143fdc4b740f.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: BOS50-C2
X-Amz-Cf-Id: mimFhQqwqnl8pPOJTb5tWAEaz-ejOHEdkcWLFJ4yl7vI69Y6t7zOcQ==
HTTP/2 301
content-length: 0
location: https://www.headspace.com/
date: Sat, 05 Sep 2020 07:52:21 GMT
set-cookie: AWSALB=7vlEBP3CJ/wUKh+fkh9bTZDQnW6UKHfSVHfWPxIRyi/cB9HeBO0eRNlhwnavDCZE7eFvDnh78vecBqAJqTvHJ8x8S/FnVnZUCl6o8CupRhvI5u9tBarYPRkRzwMD; Expires=Sat, 12 Sep 2020 07:52:21 GMT; Path=/
set-cookie: AWSALBCORS=7vlEBP3CJ/wUKh+fkh9bTZDQnW6UKHfSVHfWPxIRyi/cB9HeBO0eRNlhwnavDCZE7eFvDnh78vecBqAJqTvHJ8x8S/FnVnZUCl6o8CupRhvI5u9tBarYPRkRzwMD; Expires=Sat, 12 Sep 2020 07:52:21 GMT; Path=/; SameSite=None; Secure
x-cache: Miss from cloudfront
via: 1.1 c78d35bda1162075a55c9f0bae9d57e5.cloudfront.net (CloudFront)
x-amz-cf-pop: BOS50-C2
x-amz-cf-id: QB4o-_Qs3Xlvy8WXQIfO9XOHQR8_uwG-vI8bytcuyk-tB5gH2PPeWQ==
HTTP/2 200
content-type: text/html; charset=utf-8
content-length: 187002
vary: Accept-Encoding
date: Sat, 05 Sep 2020 07:52:21 GMT
set-cookie: AWSALB=2Ui2A2AZereBZEH73weSlc3uUCssfmV5xEtnKhfvtGDZm6+6Pl3DoRrG4FtnFT7iWV7gCtxWRzZo5uVSuxtTHWDShEpvzBESvzbYE7P+VnaX3e/DkKG3gBgPdb6J; Expires=Sat, 12 Sep 2020 07:52:21 GMT; Path=/
set-cookie: AWSALBCORS=2Ui2A2AZereBZEH73weSlc3uUCssfmV5xEtnKhfvtGDZm6+6Pl3DoRrG4FtnFT7iWV7gCtxWRzZo5uVSuxtTHWDShEpvzBESvzbYE7P+VnaX3e/DkKG3gBgPdb6J; Expires=Sat, 12 Sep 2020 07:52:21 GMT; Path=/; SameSite=None; Secure
vary: Origin
feature-policy: geolocation 'none'; microphone 'none';
set-cookie: _sp_id.8a05=6760a7e8-dfa5-4ac8-92e3-dcf4d714782d.1599292342.0.1599292342..e47cc940-1d38-43a5-9888-9ea916b2fb17; Max-Age=31536; Domain=.headspace.com; Path=/; Expires=Sat, 05 Sep 2020 16:37:57 GMT; Secure
set-cookie: countryCode=US; Max-Age=31536; Domain=.headspace.com; Path=/; Expires=Sat, 05 Sep 2020 16:37:57 GMT; Secure
set-cookie: cookiePolicyMarketing=accept; Max-Age=7776; Domain=.headspace.com; Path=/; Expires=Sat, 05 Sep 2020 10:01:57 GMT; Secure
set-cookie: cookiePolicyAnalytics=accept; Max-Age=7776; Domain=.headspace.com; Path=/; Expires=Sat, 05 Sep 2020 10:01:57 GMT; Secure
set-cookie: lang=en; Max-Age=31536; Domain=.headspace.com; Path=/; Expires=Sat, 05 Sep 2020 16:37:57 GMT; Secure
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: same-origin
content-security-policy: connect-src *.cloudfront.net *.headspace.com access.equalweb.com api-js.mixpanel.com api.amplitude.com api.branch.io api.chilipiper.com api.hubapi.com api2.branch.io app.getsentry.com assets.ctfassets.net cdn.contentful.com cdn.equalweb.com cdn.optimizely.com ct.pinterest.com errors.client.optimizely.com forms.hsforms.com gum.criteo.com identity.mparticle.com jssdks.mparticle.com logx.optimizely.com preview.contentful.com rum.optimizely.com rum.optimizely.com sdk.iad-01.braze.com sentry.io static.zuora.com stats.g.doubleclick.net www.facebook.com www.google-analytics.com 'self'; default-src *.headspace.com data:; font-src *.headspace.com data: fonts.gstatic.com use.fontawesome.com use.typekit.net 'self'; frame-src *.headspace.com 9990894.fls.doubleclick.net a11673470095.cdn.optimizely.com accounts.google.com apisandbox.zuora.com bid.g.doubleclick.net cdn-akamai.mookie1.com forms.hsforms.com gum.criteo.com static.criteo.net tags.tiqcdn.com widget.us.criteo.com www.facebook.com www.gstatic.com www.youtube.com www.zuora.com 'self'; img-src data: 'self' *; media-src *.headspace.com assets.ctfassets.net blob: downloads.ctfassets.net 'self'; script-src *.cloudfront.net *.headspace.com a.quora.com analytics.twitter.com api.branch.io apis.google.com apisandboxstatic.zuora.com app.link blob: cdn-akamai.mookie1.com cdn.amplitude.com cdn.branch.io cdn.equalweb.com cdn.lr-ingest.io cdn.optimizely.com cdn.polyfill.io cdn.ravenjs.com cdnjs.cloudflare.com connect.facebook.net forms.hsforms.com googleads.g.doubleclick.net https://static.zuora.com js.appboycdn.com js.chilipiper.com js.hs-analytics.net js.hs-banner.com js.hs-scripts.com js.hsadspixel.net js.hsforms.net jssdkcdn.mparticle.com jssdkcdns.mparticle.com platform.twitter.com s.pinimg.com sjs.bizographics.com snap.licdn.com sslwidget.criteo.com static.ads-twitter.com static.criteo.net static.zuora.com tags.tiqcdn.com tpc.googlesyndication.com unpkg.com widget.us.criteo.com www.google-analytics.com www.google.com www.googleadservices.com www.googletagmanager.com www.redditstatic.com 'self' 'unsafe-eval' 'unsafe-inline'; style-src *.headspace.com cdn.polyfill.io cdnjs.cloudflare.com cloudfront.net https://fonts.googleapis.com platform.twitter.com static.zuora.com translate.googleapis.com use.fontawesome.com www.google.com 'self' 'unsafe-inline'; report-uri https://sentry.io/api/1532173/security/?sentry_key=ac60cf3a3f0240d487fa18d834ea627b&sentry_environment=production
x-content-security-policy: connect-src *.cloudfront.net *.headspace.com access.equalweb.com api-js.mixpanel.com api.amplitude.com api.branch.io api.chilipiper.com api.hubapi.com api2.branch.io app.getsentry.com assets.ctfassets.net cdn.contentful.com cdn.equalweb.com cdn.optimizely.com ct.pinterest.com errors.client.optimizely.com forms.hsforms.com gum.criteo.com identity.mparticle.com jssdks.mparticle.com logx.optimizely.com preview.contentful.com rum.optimizely.com rum.optimizely.com sdk.iad-01.braze.com sentry.io static.zuora.com stats.g.doubleclick.net www.facebook.com www.google-analytics.com 'self'; default-src *.headspace.com data:; font-src *.headspace.com data: fonts.gstatic.com use.fontawesome.com use.typekit.net 'self'; frame-src *.headspace.com 9990894.fls.doubleclick.net a11673470095.cdn.optimizely.com accounts.google.com apisandbox.zuora.com bid.g.doubleclick.net cdn-akamai.mookie1.com forms.hsforms.com gum.criteo.com static.criteo.net tags.tiqcdn.com widget.us.criteo.com www.facebook.com www.gstatic.com www.youtube.com www.zuora.com 'self'; img-src data: 'self' *; media-src *.headspace.com assets.ctfassets.net blob: downloads.ctfassets.net 'self'; script-src *.cloudfront.net *.headspace.com a.quora.com analytics.twitter.com api.branch.io apis.google.com apisandboxstatic.zuora.com app.link blob: cdn-akamai.mookie1.com cdn.amplitude.com cdn.branch.io cdn.equalweb.com cdn.lr-ingest.io cdn.optimizely.com cdn.polyfill.io cdn.ravenjs.com cdnjs.cloudflare.com connect.facebook.net forms.hsforms.com googleads.g.doubleclick.net https://static.zuora.com js.appboycdn.com js.chilipiper.com js.hs-analytics.net js.hs-banner.com js.hs-scripts.com js.hsadspixel.net js.hsforms.net jssdkcdn.mparticle.com jssdkcdns.mparticle.com platform.twitter.com s.pinimg.com sjs.bizographics.com snap.licdn.com sslwidget.criteo.com static.ads-twitter.com static.criteo.net static.zuora.com tags.tiqcdn.com tpc.googlesyndication.com unpkg.com widget.us.criteo.com www.google-analytics.com www.google.com www.googleadservices.com www.googletagmanager.com www.redditstatic.com 'self' 'unsafe-eval' 'unsafe-inline'; style-src *.headspace.com cdn.polyfill.io cdnjs.cloudflare.com cloudfront.net https://fonts.googleapis.com platform.twitter.com static.zuora.com translate.googleapis.com use.fontawesome.com www.google.com 'self' 'unsafe-inline'; report-uri https://sentry.io/api/1532173/security/?sentry_key=ac60cf3a3f0240d487fa18d834ea627b&sentry_environment=production
x-webkit-csp: connect-src *.cloudfront.net *.headspace.com access.equalweb.com api-js.mixpanel.com api.amplitude.com api.branch.io api.chilipiper.com api.hubapi.com api2.branch.io app.getsentry.com assets.ctfassets.net cdn.contentful.com cdn.equalweb.com cdn.optimizely.com ct.pinterest.com errors.client.optimizely.com forms.hsforms.com gum.criteo.com identity.mparticle.com jssdks.mparticle.com logx.optimizely.com preview.contentful.com rum.optimizely.com rum.optimizely.com sdk.iad-01.braze.com sentry.io static.zuora.com stats.g.doubleclick.net www.facebook.com www.google-analytics.com 'self'; default-src *.headspace.com data:; font-src *.headspace.com data: fonts.gstatic.com use.fontawesome.com use.typekit.net 'self'; frame-src *.headspace.com 9990894.fls.doubleclick.net a11673470095.cdn.optimizely.com accounts.google.com apisandbox.zuora.com bid.g.doubleclick.net cdn-akamai.mookie1.com forms.hsforms.com gum.criteo.com static.criteo.net tags.tiqcdn.com widget.us.criteo.com www.facebook.com www.gstatic.com www.youtube.com www.zuora.com 'self'; img-src data: 'self' *; media-src *.headspace.com assets.ctfassets.net blob: downloads.ctfassets.net 'self'; script-src *.cloudfront.net *.headspace.com a.quora.com analytics.twitter.com api.branch.io apis.google.com apisandboxstatic.zuora.com app.link blob: cdn-akamai.mookie1.com cdn.amplitude.com cdn.branch.io cdn.equalweb.com cdn.lr-ingest.io cdn.optimizely.com cdn.polyfill.io cdn.ravenjs.com cdnjs.cloudflare.com connect.facebook.net forms.hsforms.com googleads.g.doubleclick.net https://static.zuora.com js.appboycdn.com js.chilipiper.com js.hs-analytics.net js.hs-banner.com js.hs-scripts.com js.hsadspixel.net js.hsforms.net jssdkcdn.mparticle.com jssdkcdns.mparticle.com platform.twitter.com s.pinimg.com sjs.bizographics.com snap.licdn.com sslwidget.criteo.com static.ads-twitter.com static.criteo.net static.zuora.com tags.tiqcdn.com tpc.googlesyndication.com unpkg.com widget.us.criteo.com www.google-analytics.com www.google.com www.googleadservices.com www.googletagmanager.com www.redditstatic.com 'self' 'unsafe-eval' 'unsafe-inline'; style-src *.headspace.com cdn.polyfill.io cdnjs.cloudflare.com cloudfront.net https://fonts.googleapis.com platform.twitter.com static.zuora.com translate.googleapis.com use.fontawesome.com www.google.com 'self' 'unsafe-inline'; report-uri https://sentry.io/api/1532173/security/?sentry_key=ac60cf3a3f0240d487fa18d834ea627b&sentry_environment=production
x-powered-by: Next.js 7.0.3
etag: "2da7a-pCZHrSdBnFl3R1QTkW96Ic0/RlQ"
access-control-allow-headers: authorization,content-type,x-requested-with
access-control-allow-methods: GET,POST,PUT,DELETE,OPTIONS
access-control-allow-credentials: true
x-cache: Miss from cloudfront
via: 1.1 9309d23d26ad7d164533f7f614e92709.cloudfront.net (CloudFront)
x-amz-cf-pop: BOS50-C2
x-amz-cf-id: dlDz4z-xQtvWGqWIcFxmP-iRID0XjnO6OoNHN6Y22uDha2PhLd-agA==
|