keep-alive
177018
Wed, 10 Jan 2024 21:16:49 GMT
max-age=31536000; includeSubDomains; preload
Accept-Encoding
MISS, MISS
0, 0
cache-dub4354-DUB, cache-dub4324-DUB
S1704921409.266908,VS0,VE50
bytes
h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
no-cache="set-cookie"
default-src 'self';style-src 'self' 'unsafe-inline' https://use.typekit.net https://p.typekit.net https://design-system.webprod.eberry.digital https://static.webprod.eberry.digital https://static-north.webprod.eberry.digital tagmanager.google.com fonts.googleapis.com api.tiles.mapbox.com https://cloud.cention.com https://inbox.proposales.com https://widget.ybug.io https://ybug.io https://static.cention.com/;font-src 'self' data: https://design-system.webprod.eberry.digital https://use.typekit.net fonts.gstatic.com https://script.hotjar.com https://cloud.cention.com https://static.webprod.eberry.digital https://static.cention.com/;img-src 'self' data: blob: images.ctfassets.net images.contentful.com static.webprod.eberry.digital www.google-analytics.com region1.google-analytics.com region1.analytics.google.com imgsct.cookiebot.com googleads.g.doubleclick.net www.google.com ssl.gstatic.com www.gstatic.com t.co analytics.twitter.com bat.bing.com connect.facebook.net www.facebook.com px.ads.linkedin.com www.linkedin.com www.google.se www.google.no www.google.dk www.google.fi www.google.com www.tripadvisor.se static.tacdn.com https://cloud.cention.com https://cdn.pixabay.com https://design-system.webprod.eberry.digital https://widget.ybug.io https://ybug.io https://static.webprod.eberry.digital pagead2.googlesyndication.com www.googletagmanager.com https://*.hotjar.com/ https://static.tickster.com https://static.cention.com/;script-src 'self' 'unsafe-inline' blob: www.googletagmanager.com tagmanager.google.com www.google-analytics.com googleads.g.doubleclick.net www.googleadservices.com www.google.com www.gstatic.com connect.facebook.net analytics.twitter.com static.ads-twitter.com bat.bing.com snap.licdn.com polyfill.io/v2/polyfill.min.js https://cdn.giftup.app/ https://js.stripe.com/v3/ api.tiles.mapbox.com https://*.hotjar.com/ https://unpkg.com/web-vitals/ static.webtest.eberry.digital https://script.hotjar.com/ https://cloud.cention.com https://bookingengine-mp.s3.eu-west-2.amazonaws.com https://widget.ybug.io https://ybug.io static.webprod.eberry.digital static-north.webprod.eberry.digital consent.cookiebot.com consentcdn.cookiebot.com pagead2.googlesyndication.com pagead2.googlesyndication.com https://www.thehotelsnetwork.com https://js.sentry-cdn.com https://static.proposales.com/embed.js https://consent.cookiebot.com http://static.criteo.net/js/ld/ld.js https://sslwidget.criteo.com/ https://static.cention.com/;frame-src https://www.youtube.com https://www.facebook.com https://www.google.com/recaptcha/ https://download.yourgift.cards/ https://cdn.giftup.app/ https://inbound.giftup.app/ https://js.stripe.com/ https://social.loopon.com/ https://tbs.tradedoubler.com https://vars.hotjar.com/ https://bookingengine-mp.s3.eu-west-2.amazonaws.com https://widget.ybug.io https://ybug.io pagead2.googlesyndication.com https://www.thehotelsnetwork.com https://bookingengine-mp.s3.eu-west-2.amazonaws.com https://www.thehotelsnetwork.com/ https://consentcdn.cookiebot.com https://gum.criteo.com/;media-src https://www.youtube.com https://youtu.be videos.ctfassets.net;connect-src 'self' analytics.google.com stats.g.doubleclick.net googleads.g.doubleclick.net www.google-analytics.com region1.google-analytics.com region1.analytics.google.com https://inbound.giftup.app/ api.mapbox.com events.mapbox.com sgtm.nordicchoicehotels.se https://*.hotjar.com https://*.hotjar.io wss://*.hotjar.com https://vc.hotjar.io https://cloud.cention.com wss://cloud.cention.com https://www.facebook.com https://bat.bing.com https://cdn.linkedin.oribi.io https://widget.ybug.io https://ybug.io consent.cookiebot.com consentcdn.cookiebot.com pagead2.googlesyndication.com https://www.google.com/pagead/ https://www.thehotelsnetwork.com https://js.sentry-cdn.com https://cdn.linkedin.oribi.io https://secure.proposales.com https://www.thehotelsnetwork.com/ https://consentcdn.cookiebot.com;worker-src blob:;child-src blob:;frame-ancestors self https://app.contentful.com
text/html
accelerometer 'none'; camera 'none'; geolocation 'none'; gyroscope 'none'; magnetometer 'none'; microphone 'none'; usb 'none'
accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), usb=()
strict-origin-when-cross-origin
AWSELB=F7C743631C317805E5F3D0585247DE7DC6AE5AA9C930E270EF01190C5054D196D44AF88A9C92C2D345E00CA5304ADCCA0182269A2BB0480923B027D033118F5C2A104D4778;PATH=/;MAX-AGE=300, AWSELBCORS=F7C743631C317805E5F3D0585247DE7DC6AE5AA9C930E270EF01190C5054D196D44AF88A9C92C2D345E00CA5304ADCCA0182269A2BB0480923B027D033118F5C2A104D4778;PATH=/;MAX-AGE=300;SECURE;SAMESITE=None
1.1 varnish, 1.1 varnish
nosniff
off
noopen
SAMEORIGIN
none
0
|