HTTP/1.1 301 Moved Permanently
Date: Fri, 31 Dec 2021 09:29:10 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.5.38
Location: https://www.hachette-collections.com/fr-ca/
Content-Type: text/html; charset=iso-8859-1
HTTP/1.1 200 OK
Date: Fri, 31 Dec 2021 09:29:11 GMT
Server: Linux hachette-web2 3.10.0-862.6.3.el7.x86_64 #1 SMP Tue Jun 26 16:32:21 UTC 2018 x86_64
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Pragma: no-cache
Set-Cookie: PHPSESSID=8412f1c50fa03f0d6abe57526d5d8508; path=/; secure; HttpOnly; HTTPOnly; Secure
Set-Cookie: shop=spo; expires=Sun, 30-Jan-2022 09:29:11 GMT; path=/fr-ca; HTTPOnly; Secure
Set-Cookie: shop=spo; expires=Sun, 30-Jan-2022 09:29:11 GMT; path=/fr-ca; domain=www.hachette-collections.com; HTTPOnly; Secure
X-XSS-Protection: 1; mode=block
X-Frame-Option: ALLOW-FROM https://hachettepartworks.com, SAMEORIGIN, ALLOW-FROM https://ws1.postescanada-canadapost.ca, ALLOW-FROM https://googleads.g.doubleclick.net
Vary: Accept-Encoding
Content-Security-Policy: default-src 'none'; script-src 'self' data: 'unsafe-inline' 'unsafe-eval' https://www.awin1.com/ https://www.dwin1.com/ https://www.paypal.com https://acdn.adnxs.com/dmp/up/pixie.js https://geolocation.onetrust.com/ https://fevoki.wejekihota.com https://apis.google.com https://cdn.cookielaw.org https://www.googletagmanager.com https://connect.facebook.net https://ws1.postescanada-canadapost.ca https://cdnjs.cloudflare.com https://cdn.doofinder.com https://cdn.hachette-collections.com https://www.google-analytics.com https://www.google.com https://script.hotjar.com https://googleads.g.doubleclick.net https://www.googleadservices.com https://static.hotjar.com https://autroliner.com https://cilkonlay.com https://bat.bing.com https://s.pinimg.com https://sp.analytics.yahoo.com https://s.yimg.com https://www.redditstatic.com https://www3.actito.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://ws1.postescanada-canadapost.ca https://cdn.hachette-collections.com https://hachettepartworks.com; img-src 'self' data: https://t.paypal.com https://www.hachette-collections.com https://ib.adnxs.com https://cdn.cookielaw.org https://www.google.co.il https://secure.adnxs.com https://www.facebook.com https://ws1.postescanada-canadapost.ca https://hachettepartworks.com https://cdn.hachette-collections.com https://bat.bing.com https://www.google.be https://secure.adnxs.com https://www.google.com https://www.gstatic.com https://www.google.fr https://www.google-analytics.com https://www.google.ca https://autroliner.com https://www.googletagmanager.com https://www.google.ch https://ct.pinterest.com https://www.google.de https://www.google.co.uk https://www.google.lu https://www.google.it https://www.google.pt https://www.google.co.ma https://scontent-cdg2-1.cdninstagram.com https://alb.reddit.com https://googleads.g.doubleclick.net https://www.google.dk https://scontent-cdt1-1.cdninstagram.com https://info.hachette-collections.com https://www.google.gr https://www.google.tn; font-src 'self' https://fonts.gstatic.com https://cdn.hachette-collections.com https://static3.avast.com; connect-src 'self' https://www.sandbox.paypal.com https://www.paypal.com https://privacyportal-eu.onetrust.com https://privacyportal-fr.onetrust.com https://1637314617.rsc.cdn77.org https://cdn.cookielaw.org https://stage-secure2-vault.hipay-tpp.com https://ws1.postescanada-canadapost.ca https://eu1-search.doofinder.com https://secure2-vault.hipay-tpp.com https://bat.bing.com https://in.hotjar.com https://www.google-analytics.com https://stats.g.doubleclick.net https://www.google.com https://ct.pinterest.com https://s.yimg.com https://vc.hotjar.io https://www.facebook.com; frame-src 'self' https://www.sandbox.paypal.com https://www.paypal.com https://checkout.slimpay.net https://checkout.preprod.slimpay.com https://accounts.google.com https://www.youtube.com https://www3.moneris.com https://w.soundcloud.com https://vars.hotjar.com https://bid.g.doubleclick.net https://aax-eu.amazon-adsystem.com; frame-ancestors 'self'; upgrade-insecure-requests; block-all-mixed-content; report-uri /report.php
Access-Control-Allow-Origin: https://www.google-analytics.com
Content-Type: text/html; charset=utf-8
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
Referrer-Policy: no-referrer-when-downgrade
Cache-Control: "no-cache, max-age=600"
|