Cache-Control: max-age=0, no-cache, no-store
Connection: keep-alive Transfer-Encoding
Content-Security-Policy-Report-Only: default-src 'self'; script-src 'self' https://nexus.ensighten.com https://service.maxymiser.net https://www.google-analytics.com 'sha256-5IzT/H0eijJeDWBtPyUFr1/OCTLuEy1930jjrxi58qg=' 'sha256-4GK0Cvfedp8VLQ9T9Uw6U2CTnfuRd/nb3arXSlHgQO4=' 'sha256-DS4t6paBZxKpiN+sXiXIuxbWzGjNNvi2/qmLkU85l98='; img-src 'self' https://*.united.com https://www.google-analytics.com; style-src 'self' 'unsafe-inline'; base-uri 'none'; report-uri /ual/en/us/common/csp/report
Content-Type: text/html; charset=utf-8
Date: Fri, 06 Oct 2017 06:22:51 GMT
Expires: Fri, 06 Oct 2017 06:22:51 GMT
Pragma: no-cache
Server: Microsoft-IIS/7.5
Set-Cookie: ual_akaau=1507271871~id=4f48f9bd928d7cb6b868bc85dfb8a782; path=/
Strict-Transport-Security: max-age=15768000; includeSubDomains; preload
Transfer-Encoding: chunked
Vary: User-Agent
X-Frame-Options: SAMEORIGIN
X-Robots-Tag: noindex, nofollow
X-Ua-Compatible: IE=Edge,chrome=1