Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Authorization, X-Requested-With, X-Csrf-Token, X-Entry-Point, X-Secret-Key, X-Access-Token
Access-Control-Allow-Methods: GET, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Origin: https://gibdd.mail.ru
Connection: keep-alive
Date: Thu, 05 Oct 2017 15:52:16 GMT
Server: nginx
Transfer-Encoding: chunked
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-Xss-Protection: 1; mode=block; report=https://cspreport.mail.ru/xxssprotection