Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Content-Language: en-US
Content-Length: 2734
Content-Type: text/html;charset=UTF-8
Set-Cookie: JSESSIONID=BBF7B907011981093194EDF4F1C8D961; Path=/; Secure; HttpOnly
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-Xss-Protection: 1; mode=block