HTTP/1.1 302 Found
Date: Wed, 20 Oct 2021 08:02:47 GMT
Content-Type: text/html; charset=UTF-8
Connection: keep-alive
Set-Cookie: PHPSESSID=v6vv4cdv23vjvdv0gm4mfc0tj3; expires=Wed, 20-Oct-2021 09:02:47 GMT; Max-Age=3600; path=/; domain=bigpoppasmokers.com; HttpOnly
Expires: Tue, 20 Oct 2020 08:02:47 GMT
Cache-Control: max-age=0, must-revalidate, no-cache, no-store
Pragma: no-cache
Set-Cookie: wp_customerId=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=bigpoppasmokers.com
Set-Cookie: wp_customerGroup=NOT+LOGGED+IN; expires=Thu, 20-Oct-2022 08:02:47 GMT; Max-Age=31536000; path=/; domain=bigpoppasmokers.com
Location: https://www.bigpoppasmokers.com/
Report-To: {"group":"report-endpoint","max_age":10886400,"endpoints":[{"url":"https:\/\/www.example.com\/"}]}
Content-Security-Policy-Report-Only: font-src *.cloudflare.com *.twitter.com *.gstatic.com *.typekit.net *.twimg.com *.trustedshops.com *.googleapis.com 'self' data: *.hotjar.com *.klevu.com *.bootstrapcdn.com *.bigpoppasmokers.com *.olark.com *.fontawesome.com maxcdn.bootstrapcdn.com 'self' 'unsafe-inline'; form-action secure.authorize.net test.authorize.net geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com *.twitter.com *.bigpoppasmokers.com *.facebook.com *.facebook.net 'self' 'unsafe-inline'; frame-ancestors 'self' 'unsafe-inline'; frame-src secure.authorize.net test.authorize.net geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.paypal.com www.sandbox.paypal.com *.twitter.com *.olark.com *.affirm.com *.youtube.com *.hotjar.com *.bigpoppasmokers.com *.demdex.net *.google.com *.facebook.com *.facebook.net *.doubleclick.net *.weltpixel.com 'self' 'unsafe-inline'; img-src widgets.magentocommerce.com www.googleadservices.com www.google-analytics.com t.paypal.com www.paypal.com www.paypalobjects.com fpdbs.paypal.com fpdbs.sandbox.paypal.com *.vimeocdn.com s.ytimg.com *.cloudflare.com *.klarna.com *.googleadservices.com *.google-analytics.com *.paypal.com *.twitter.com *.twimg.com *.ytimg.com 'self' data: 'self' http://* *.lightemporium.com *.usercentrics.eu *.klevu.com *.olark.com *.cloudfront.net *.bigpoppasmokers.com store.paradoxlabs.com *.gstatic.com 'self' 'unsafe-inline'; script-src assets.adobedtm.com secure.authorize.net test.authorize.net geostag.cardinalcommerce.com 1eafstag.cardinalcommerce.com geoapi.cardinalcommerce.com 1eafapi.cardinalcommerce.com songbird.cardinalcommerce.com includestest.ccdc02.com js.authorize.net jstest.authorize.net www.googleadservices.com www.google-analytics.com www.paypal.com www.sandbox.paypal.com www.paypalobjects.com t.paypal.com js.braintreegateway.com s.ytimg.com video.google.com vimeo.com www.vimeo.com cdn-scripts.signifyd.com www.youtube.com *.cloudflare.com *.cloudflareinsights.com *.twitter.com *.google-analytics.com *.google.com *.twimg.com *.gstatic.com *.trustedshops.com *.usercentrics.eu *.fontawesome.com *.klevu.com *.olark.com *.hellomedian.com *.affirm.com *.newrelic.com *.nr-data.net *.googletagmanager.com *.hotjar.com *.payments-amazon.com includes.ccdc02.com *.shareasale.com *.dwin1.com *.doubleclick.net *.bigpoppasmokers.com *.fullstory.com *.elfsight.com *.facebook.com *.facebook.net chimpstatic.com *.avada.io *.authorize.net https://www.googletagmanager.com tagmanager.google.com 'self' 'unsafe-inline' 'unsafe-eval'; style-src getfirebug.com *.cloudflare.com *.googleapis.com *.twitter.com *.twimg.com *.gstatic.com *.typekit.net *.trustedshops.com *.usercentrics.eu *.fontawesome.com *.klevu.com *.affirm.com *.olark.com *.bootstrapcdn.com *.bigpoppasmokers.com maxcdn.bootstrapcdn.com tagmanager.google.com 'self' 'unsafe-inline'; object-src 'self' 'unsafe-inline'; media-src *.olark.com *.bigpoppasmokers.com 'self' 'unsafe-inline'; manifest-src 'self' 'unsafe-inline'; connect-src geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com *.cloudflare.com *.twitter.com *.paypal.com *.twimg.com *.affirm.com *.olark.com *.hellomedian.com wss://socket.hellomedian.com *.hotjar.com *.hotjar.io *.nr-data.net *.amazon.com *.authorize.net *.bigpoppasmokers.com *.google-analytics.com *.demdex.net *.fullstory.com *.elfsight.com *.instacloud.io *.facebook.com *.facebook.net *.doubleclick.net *.ksearchnet.com 'self' 'unsafe-inline'; child-src 'self' blob: 'self' 'unsafe-inline'; default-src 'self' 'unsafe-inline' 'unsafe-eval'; base-uri 'self' 'unsafe-inline'; report-uri https://www.example.com/; report-to report-endpoint;
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 6a10b9d81bf22964-ORD
HTTP/2 200
date: Wed, 20 Oct 2021 08:02:48 GMT
content-type: text/html; charset=UTF-8
set-cookie: PHPSESSID=ig7nmismenr5rof0m4b8hrilut; expires=Wed, 20-Oct-2021 09:02:48 GMT; Max-Age=3600; path=/; domain=www.bigpoppasmokers.com; secure; HttpOnly
expires: Tue, 20 Oct 2020 08:00:48 GMT
cache-control: max-age=0, must-revalidate, no-cache, no-store
pragma: no-cache
report-to: {"group":"report-endpoint","max_age":10886400,"endpoints":[{"url":"https:\/\/www.example.com\/"}]}
content-security-policy-report-only: font-src *.cloudflare.com *.twitter.com *.gstatic.com *.typekit.net *.twimg.com *.trustedshops.com *.googleapis.com 'self' data: *.hotjar.com *.klevu.com *.bootstrapcdn.com *.bigpoppasmokers.com *.olark.com *.fontawesome.com maxcdn.bootstrapcdn.com 'self' 'unsafe-inline'; form-action secure.authorize.net test.authorize.net geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com *.twitter.com *.bigpoppasmokers.com *.facebook.com *.facebook.net 'self' 'unsafe-inline'; frame-ancestors 'self' 'unsafe-inline'; frame-src secure.authorize.net test.authorize.net geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.paypal.com www.sandbox.paypal.com *.twitter.com *.olark.com *.affirm.com *.youtube.com *.hotjar.com *.bigpoppasmokers.com *.demdex.net *.google.com *.facebook.com *.facebook.net *.doubleclick.net *.weltpixel.com 'self' 'unsafe-inline'; img-src widgets.magentocommerce.com www.googleadservices.com www.google-analytics.com t.paypal.com www.paypal.com www.paypalobjects.com fpdbs.paypal.com fpdbs.sandbox.paypal.com *.vimeocdn.com s.ytimg.com *.cloudflare.com *.klarna.com *.googleadservices.com *.google-analytics.com *.paypal.com *.twitter.com *.twimg.com *.ytimg.com 'self' data: 'self' http://* *.lightemporium.com *.usercentrics.eu *.klevu.com *.olark.com *.cloudfront.net *.bigpoppasmokers.com store.paradoxlabs.com *.gstatic.com 'self' 'unsafe-inline'; script-src assets.adobedtm.com secure.authorize.net test.authorize.net geostag.cardinalcommerce.com 1eafstag.cardinalcommerce.com geoapi.cardinalcommerce.com 1eafapi.cardinalcommerce.com songbird.cardinalcommerce.com includestest.ccdc02.com js.authorize.net jstest.authorize.net www.googleadservices.com www.google-analytics.com www.paypal.com www.sandbox.paypal.com www.paypalobjects.com t.paypal.com js.braintreegateway.com s.ytimg.com video.google.com vimeo.com www.vimeo.com cdn-scripts.signifyd.com www.youtube.com *.cloudflare.com *.cloudflareinsights.com *.twitter.com *.google-analytics.com *.google.com *.twimg.com *.gstatic.com *.trustedshops.com *.usercentrics.eu *.fontawesome.com *.klevu.com *.olark.com *.hellomedian.com *.affirm.com *.newrelic.com *.nr-data.net *.googletagmanager.com *.hotjar.com *.payments-amazon.com includes.ccdc02.com *.shareasale.com *.dwin1.com *.doubleclick.net *.bigpoppasmokers.com *.fullstory.com *.elfsight.com *.facebook.com *.facebook.net chimpstatic.com *.avada.io *.authorize.net https://www.googletagmanager.com tagmanager.google.com 'self' 'unsafe-inline' 'unsafe-eval'; style-src getfirebug.com *.cloudflare.com *.googleapis.com *.twitter.com *.twimg.com *.gstatic.com *.typekit.net *.trustedshops.com *.usercentrics.eu *.fontawesome.com *.klevu.com *.affirm.com *.olark.com *.bootstrapcdn.com *.bigpoppasmokers.com maxcdn.bootstrapcdn.com tagmanager.google.com 'self' 'unsafe-inline'; object-src 'self' 'unsafe-inline'; media-src *.olark.com *.bigpoppasmokers.com 'self' 'unsafe-inline'; manifest-src 'self' 'unsafe-inline'; connect-src geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com *.cloudflare.com *.twitter.com *.paypal.com *.twimg.com *.affirm.com *.olark.com *.hellomedian.com wss://socket.hellomedian.com *.hotjar.com *.hotjar.io *.nr-data.net *.amazon.com *.authorize.net *.bigpoppasmokers.com *.google-analytics.com *.demdex.net *.fullstory.com *.elfsight.com *.instacloud.io *.facebook.com *.facebook.net *.doubleclick.net *.ksearchnet.com 'self' 'unsafe-inline'; child-src 'self' blob: 'self' 'unsafe-inline'; default-src 'self' 'unsafe-inline' 'unsafe-eval'; base-uri 'self' 'unsafe-inline'; report-uri https://www.example.com/; report-to report-endpoint;
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
vary: Accept-Encoding
cf-cache-status: BYPASS
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
server: cloudflare
cf-ray: 6a10b9d9fba90347-ORD
|