HTTP/1.1 301 Moved Permanently
Server: awselb/2.0
Date: Wed, 20 Oct 2021 08:41:34 GMT
Content-Type: text/html
Content-Length: 134
Connection: keep-alive
Location: https://www.heine.ch:443/
HTTP/2 200
date: Wed, 20 Oct 2021 08:41:36 GMT
content-type: text/html; charset=utf-8
content-length: 150711
x-webapp-version: local
set-cookie: wcc-hech=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ1c2VySWQiOiJ3YVN0c1JBeVVWcWp4UVoyd0RhZW8iLCJiYXNrZXRLZXkiOiJ3YVN0c1JBeVVWcWp4UVoyd0RhZW8iLCJ3aXNobGlzdEtleSI6IndhU3RzUkF5VVZxanhRWjJ3RGFlbyIsImlhdCI6MTYzNDcxOTI5NX0.9Ry_8kQi7yi8GTZ1KdGHtJ2bsLZ5lVqd0yTQgtsjbn4; Max-Age=5184000; Domain=.heine.ch; Path=/; Expires=Sun, 19 Dec 2021 08:41:35 GMT; Secure; SameSite=Lax
set-cookie: visitIdChanged=true; Max-Age=1800; Domain=.heine.ch; Path=/; Expires=Wed, 20 Oct 2021 09:11:35 GMT; Secure; SameSite=Lax
set-cookie: visitId=CfKksR6oF7J6haN_n85U0; Max-Age=1800; Domain=.heine.ch; Path=/; Expires=Wed, 20 Oct 2021 09:11:35 GMT; Secure; SameSite=Lax
set-cookie: ecc=800; Max-Age=2592000; Domain=.heine.ch; Path=/; Expires=Fri, 19 Nov 2021 08:41:35 GMT; Secure; SameSite=Lax
set-cookie: eccCurrent=800; Max-Age=2592000; Domain=.heine.ch; Path=/; Expires=Fri, 19 Nov 2021 08:41:35 GMT; Secure; SameSite=Lax
set-cookie: trigger=undefined; Path=/; Expires=Thu, 01 Jan 1970 00:00:00 GMT
content-security-policy: default-src 'self' cdn.wcc.heine.ch https://cdn.wcc.heine.ch/graphql https://api.prod.wcc.heine.ch/graphql; base-uri 'self'; font-src 'self' cdn.wcc.heine.ch fonts.gstatic.com data:; img-src * data:; connect-src 'self' https://cdn.wcc.heine.ch/graphql https://api.prod.wcc.heine.ch/graphql te.heine.ch tp.heine.ch wasp.heine.ch *.facebook.com *.contentsquare.net *.cookielaw.org api.sovendus.com bat.bing.com benefits.sovendus.com chat.userlike.com eu-witt-gruppe-prod1.mini.snplow.net eu-witt-gruppe-prod1.collector.snplow.net identification-api.sovendus.com press-tracking-api.sovendus.com wss://chat.userlike.com www.google-analytics.com www.jsctool.com https://adservice.google.com/pagead https://graphql.contentful.com https://privacyportal-eu.onetrust.com https://www.google.com/pagead *.creativecdn.com *.optimizely.com; object-src 'none'; child-src blob:; script-src * 'unsafe-inline' 'unsafe-eval'; style-src 'self' cdn.wcc.heine.ch www.googletagmanager.com fonts.googleapis.com 'unsafe-inline'; frame-src 'self' checkout-m.heine.ch checkout.heine.ch *.awin1.com *.criteo.net *.criteo.com *.adrtx.net *.contentsquare.net www.googletagmanager.com www.facebook.com www.youtube.com dmp.theadex.com 5127363.fls.doubleclick.net www.jsctool.com api.sovendus.com benefits.sovendus.com https://creativecdn.com/; media-src 'self' cdn.wcc.heine.ch cdn.witt.info/ images.ctfassets.net www.youtube.com witt-gruppe-res.cloudinary.com; manifest-src 'self' cdn.wcc.heine.ch; worker-src 'self' cdn.wcc.heine.ch blob:; form-action 'self' www.facebook.com; block-all-mixed-content; frame-ancestors 'self'; sandbox allow-scripts allow-forms allow-same-origin allow-top-navigation allow-popups allow-popups-to-escape-sandbox allow-modals;
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15724800; includeSubDomains
x-download-options: noopen
x-xss-protection: 0
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
x-permitted-cross-domain-policies: none
permissions-policy: camera=(), microphone=(), geolocation=()
etag: "24cb7-Xmbt2vtieZzdY2KuQhP+KcOsBp4"
cache-control: private, no-cache, no-store, max-age=0, must-revalidate
server-timing: total; dur=407.785535; desc="Total Response Time"
|