HTTP/1.1 301 Moved Permanently
Date: Sun, 12 Dec 2021 08:43:09 GMT
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sun, 12 Dec 2021 09:43:09 GMT
Location: https://www.marathonleisure.co.uk
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FoJGGTwQypXBu1JJ05PJzn9dgUf%2BsEbpY8kdrb1%2B0Kb4DcL3Kb5CNmEgfwWuXgjjqxxrS6IrZHqnExxP6MDfQkbamb6ubrKvKwdmG25yVQE8KTid%2BOFtZLAR87H4AWxQ1NdglkI40A%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 6bc5a9d60f250cd9-EWR
HTTP/2 200
date: Sun, 12 Dec 2021 08:43:09 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
vary: Accept-Encoding
set-cookie: PHPSESSID=sd9fqi2ghet2vvjmpi25hoho51; expires=Sun, 12-Dec-2021 11:43:09 GMT; Max-Age=10800; path=/; domain=www.marathonleisure.co.uk; secure; HttpOnly; SameSite=Lax
content-security-policy: base-uri 'self'; child-src *.vimeo.com *.vimeocdn.com vimeo.com www.youtube.com; connect-src *.facebook.com *.facebook.net *.icdn.com *.linkedin.com *.vimeo.com *.vimeocdn.com bam.eu01.nr-data.net bam.nr-data.net 'self' stats.g.doubleclick.net vimeo.com www.google-analytics.com; default-src 'self'; font-src data: fonts.gstatic.com maxcdn.bootstrapcdn.com/font-awesome/latest/fonts/ 'self'; form-action 'self' connect.facebook.net platform.twitter.com www.facebook.com; frame-src *.vimeo.com *.vimeocdn.com accounts.google.com 'self' tagmanager.google.com vimeo.com www.facebook.com www.google.com www.googletagmanager.com www.instagram.com www.youtube.com; img-src blob: data: 'self' *.doubleclick.net *.facebook.com *.fbcdn.net *.google.co.uk *.google.com *.icdn.com *.linkedin.com *.vimeo.com *.vimeocdn.com csi.gstatic.com i.ytimg.com m.addthis.com maps.googleapis.com maps.gstatic.com 'self' ssl.gstatic.com stats.g.doubleclick.net vimeo.com www.addthis.com www.google-analytics.com www.googletagmanager.com www.gstatic.com www.marathonleisure.co.uk; media-src *.vimeo.com *.vimeocdn.com gcs-vimeo.akamaized.net vimeo.com; script-src 'self' 'unsafe-eval' 'unsafe-inline' *.facebook.net *.ggpht.com *.icdn.com *.linkedin.com *.vimeo.com *.vimeocdn.com api-public.addthis.com apis.google.com bam.eu01.nr-data.net bam.nr-data.net cdn.syndication.twimg.com connect.facebook.net googleads.g.doubleclick.net graph.facebook.com js-agent.newrelic.com m.addthis.com m.addthisedge.com maps.googleapis.com platform.twitter.com polyfill.io s.ytimg.com s7.addthis.com stats.g.doubleclick.net syndication.twitter.com tagmanager.google.com vimeo.com www.google-analytics.com www.google.com www.googleadservices.com www.googleapis.com www.googletagmanager.com www.gstatic.com www.instagram.com www.linkedin.com www.youtube.com; style-src 'self' 'unsafe-inline' *.vimeocdn.com fonts.googleapis.com maxcdn.bootstrapcdn.com 'self' tagmanager.google.com vimeo.com; worker-src 'self'; block-all-mixed-content; upgrade-insecure-requests
content-security-policy-report-only: font-src fonts.googleapis.com fonts.gstatic.com maxcdn.bootstrapcdn.com *.yotpo.com *.googleapis.com *.gstatic.com 'self' 'unsafe-inline'; form-action secure.authorize.net test.authorize.net geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com https://plumrocket.com *.yotpo.com 'self' 'unsafe-inline'; frame-ancestors 'self' 'unsafe-inline'; frame-src fast.amc.demdex.net secure.authorize.net test.authorize.net geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.paypal.com www.sandbox.paypal.com player.vimeo.com c.paypal.com checkout.paypal.com assets.braintreegateway.com pay.google.com *.cardinalcommerce.com https://plumrocket.com *.weltpixel.com *.yotpo.com 'self' 'unsafe-inline'; img-src assets.adobedtm.com amcglobal.sc.omtrdc.net dpm.demdex.net cm.everesttech.net widgets.magentocommerce.com data: www.googleadservices.com www.google-analytics.com www.paypalobjects.com t.paypal.com *.ftcdn.net *.behance.net www.paypal.com fpdbs.paypal.com fpdbs.sandbox.paypal.com *.vimeocdn.com s.ytimg.com maps.googleapis.com maps.gstatic.com www.sandbox.paypal.com b.stats.paypal.com dub.stats.paypal.com assets.braintreegateway.com c.paypal.com checkout.paypal.com https://redchamps.com *.gstatic.com *.yotpo.com 'self' 'unsafe-inline'; script-src assets.adobedtm.com secure.authorize.net test.authorize.net www.googleadservices.com www.google-analytics.com www.paypalobjects.com js.braintreegateway.com www.paypal.com geostag.cardinalcommerce.com 1eafstag.cardinalcommerce.com geoapi.cardinalcommerce.com 1eafapi.cardinalcommerce.com songbird.cardinalcommerce.com includestest.ccdc02.com www.sandbox.paypal.com t.paypal.com s.ytimg.com video.google.com vimeo.com www.vimeo.com *.vimeocdn.com www.youtube.com maps.googleapis.com maps.gstatic.com fonts.googleapis.com assets.braintreegateway.com c.paypal.com pay.google.com api.braintreegateway.com api.sandbox.braintreegateway.com client-analytics.braintreegateway.com client-analytics.sandbox.braintreegateway.com https://www.googletagmanager.com tagmanager.google.com *.yotpo.com 'self' 'unsafe-inline' 'unsafe-eval'; style-src getfirebug.com fonts.googleapis.com maxcdn.bootstrapcdn.com unsafe-inline tagmanager.google.com *.yotpo.com *.googleapis.com 'self' 'unsafe-inline'; object-src 'self' 'unsafe-inline'; media-src 'self' 'unsafe-inline'; manifest-src 'self' 'unsafe-inline'; connect-src dpm.demdex.net amcglobal.sc.omtrdc.net geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.paypal.com www.sandbox.paypal.com api.braintreegateway.com api.sandbox.braintreegateway.com client-analytics.braintreegateway.com client-analytics.sandbox.braintreegateway.com *.braintree-api.com https://www.google-analytics.com *.yotpo.com 'self' 'unsafe-inline'; child-src assets.braintreegateway.com c.paypal.com http: https: blob: 'self' 'unsafe-inline'; default-src 'self' 'unsafe-inline' 'unsafe-eval'; base-uri 'self' 'unsafe-inline';
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests;
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache: MISS
pragma: no-cache
expires: -1
cache-control: no-store, no-cache, must-revalidate, max-age=0
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
cf-cache-status: DYNAMIC
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Zf%2BJBr5oYnW3ohF05A5vmqZ5eMuom1uk55GaTL7dqLH%2Bx%2B9M0mWr8b2MbJux4eDTODca5zagLoB12111JBfHxSijLf7Zen2Jcy1vg2TRpBV%2F8awip8aOg7JfFAGOJFs3QrJq%2FjJ%2BkfMp5H4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 6bc5a9d66acb1845-EWR
|