Cache-Control: no-cache, no-store, max-age=0
Content-Length: 1723
Content-Security-Policy: default-src 'self'; script-src 'self' https://www.google.com/ https://www.gstatic.com/ https://apis.google.com/; font-src 'self' data:; style-src 'self' 'unsafe-inline' blob:; frame-src 'self' https://www.google.com/; connect-src 'self' https://www.snapchat.com; img-src 'self' data: https://ssl.gstatic.com https://www.snapchat.com; report-uri /accounts/report_csp
Content-Type: text/html
Date: Thu, 05 Oct 2017 10:55:42 GMT
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Server: Google Frontend
Set-Cookie: xsrf_token=DkQNrt1hlqhsERNplSGQcA; max-age=86400; expires=Fri 06 Oct 2017 10:55:42 GMT; path=/accounts/; secure; HttpOnly xsrf_token=; max-age=0; expires=Thu 05 Oct 2017 10:55:42 GMT; path=/accounts/login; secure; HttpOnly xsrf_token=; max-age=0; expires=Thu 05 Oct 2017 10:55:42 GMT; path=/accounts/login/; secure; HttpOnly xsrf_token=; max-age=0; expires=Thu 05 Oct 2017 10:55:42 GMT; path=/accounts/login/verify; secure; HttpOnly
Status: 200
Strict-Transport-Security: max-age=31536000; includeSubdomains
X-Cloud-Trace-Context: af64130df513ef47ab0b7cd6df206f4b
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-Xss-Protection: 1; mode=block