max-age=0, must-revalidate, no-cache, no-store
keep-alive
gzip
worker-src blob:; font-src fonts.gstatic.com *.kxcdn.com *.sagepay.com maxcdn.bootstrapcdn.com 'self' data: 'unsafe-inline' data: data: *.nxedge.io *.motocentral.co.uk *.motocentral.com *.cloudflare.com *.twitter.com *.google.com *.google.co.uk *.facebook.com *.gstatic.com *.typekit.net *.twimg.com *.trustedshops.com *.googleapis.com *.fontawesome.com *.bootstrapcdn.com *.yotpo.com 'self' 'unsafe-inline'; form-action secure.authorize.net test.authorize.net geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com *.sagepay.com *.twitter.com *.facebook.com yotpo.com www.yotpo.com p.yotpo.com staticw2.yotpo.com w2.yotpo.com 'self' 'unsafe-inline'; frame-ancestors 'self' data: 'unsafe-inline' data: data: *.nxedge.io *.motocentral.co.uk *.motocentral.com *.twitter.com https://www.google.com https://www.google.co.uk https://www.facebook.com *.vimeo.com *.youtube.com *.trustpilot.com 'self' 'unsafe-inline'; frame-src secure.authorize.net test.authorize.net geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.paypal.com www.sandbox.paypal.com facebook.com www.facebook.com *.kxcdn.com youtube.com www.youtube.com platform.twitter.com google.com *.sagepay.com 'self' data: 'unsafe-inline' data: data: *.nxedge.io *.motocentral.co.uk *.motocentral.com *.twitter.com https://www.google.com https://www.google.co.uk https://www.facebook.com *.addthis.com *.vimeo.com *.youtube.com *.trustpilot.com yotpo.com www.yotpo.com p.yotpo.com staticw2.yotpo.com w2.yotpo.com 'self' 'unsafe-inline'; img-src widgets.magentocommerce.com 'self' data: www.googleadservices.com www.google-analytics.com www.paypalobjects.com t.paypal.com www.paypal.com fpdbs.paypal.com fpdbs.sandbox.paypal.com *.vimeocdn.com s.ytimg.com scontent.cdninstagram.com *.kxcdn.com amcglobal.sc.omtrdc.net *.twitter.com *.googleapis.com google.com *.gstatic.com *.paypal.com *.sagepay.com 'unsafe-inline' data: *.nxedge.io *.motocentral.co.uk *.motocentral.com *.cloudflare.com *.google.com *.google.co.uk https://www.facebook.com *.klarna.com *.googleadservices.com *.google-analytics.com *.twimg.com *.ytimg.com *.lightemporium.com *.usercentrics.eu *.connect.facebook.net https://stats.g.doubleclick.net *.youtube.com https://d.adroll.com https://pixel.advertising.com https://pixel.rubiconproject.com https://simage2.pubmatic.com https://dsum-sec.casalemedia.com https://ads.yahoo.com https://eb2.3lift.com https://sync.outbrain.com https://trc.taboola.com https://x.bidswitch.net/sync https://ib.adnxs.com https://idsync.rlcdn.com https://us-u.openx.net https://ups.analytics.yahoo.com https://segments.company-target.com https://sync.tidaltv.com *.zopim.com *.zopim.io *.zdassets.com yotpo.com www.yotpo.com p.yotpo.com staticw2.yotpo.com w2.yotpo.com 'self' 'unsafe-inline'; script-src *.adobedtm.com secure.authorize.net test.authorize.net www.googleadservices.com www.google-analytics.com www.paypalobjects.com js.braintreegateway.com www.paypal.com geostag.cardinalcommerce.com 1eafstag.cardinalcommerce.com geoapi.cardinalcommerce.com 1eafapi.cardinalcommerce.com songbird.cardinalcommerce.com includestest.ccdc02.com www.sandbox.paypal.com t.paypal.com s.ytimg.com video.google.com vimeo.com www.vimeo.com www.youtube.com *.googleapis.com google.com *.gstatic.com cdn.ampproject.org connect.facebook.net www.googletagmanager.com googletagmanager.com *.kxcdn.com platform.twitter.com *.sagepay.com maps.googleapis.com 'self' data: 'unsafe-inline' data: data: *.nxedge.io *.motocentral.co.uk *.motocentral.com *.cloudflare.com *.twitter.com *.google.com *.google.co.uk *.facebook.com *.googleadservices.com *.google-analytics.com *.twimg.com *.trustedshops.com *.usercentrics.eu *.fontawesome.com https://connect.facebook.net *.paypalobjects.com *.paypal.com https://chimpstatic.com *.googletagmanager.com *.youtube.com https://s.adroll.com https://d.adroll.com https://d.adroll.mgr.consensu.org *.addthis.com s7.addthis.com m.addthis.com z.moatads.com *.addthisedge.com *.bootstrapcdn.com graph.facebook.com widgets.pinterest.com *.cardinalcommerce.com *.trustpilot.com *.yotpo.com *.authorize.net *.zopim.com *.zopim.io *.zdassets.com yotpo.com www.yotpo.com p.yotpo.com staticw2.yotpo.com w2.yotpo.com 'self' 'unsafe-inline' 'unsafe-eval'; style-src getfirebug.com *.googleapis.com google.com *.kxcdn.com *.gstatic.com *.sagepay.com maxcdn.bootstrapcdn.com 'self' data: 'unsafe-inline' data: data: *.nxedge.io *.motocentral.co.uk *.motocentral.com *.cloudflare.com *.twitter.com *.google.com *.google.co.uk *.facebook.com *.twimg.com *.typekit.net *.trustedshops.com *.usercentrics.eu *.fontawesome.com *.youtube.com *.bootstrapcdn.com *.yotpo.com *.zopim.com *.zopim.io *.zdassets.com yotpo.com www.yotpo.com p.yotpo.com staticw2.yotpo.com w2.yotpo.com 'self' 'unsafe-inline'; object-src 'self' 'unsafe-inline'; media-src 'self' data: 'unsafe-inline' data: data: *.zopim.com *.zopim.io 'self' 'unsafe-inline'; manifest-src 'self' 'unsafe-inline'; connect-src geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com https://www.paypal.com/xoplatform/logger/api/logger cdn.ampproject.org *.kxcdn.com dpm.demdex.net *.paypal.com *.sagepay.com 'self' data: 'unsafe-inline' data: data: *.nxedge.io *.motocentral.co.uk *.motocentral.com *.cloudflare.com *.twitter.com *.twimg.com *.google.com *.google.co.uk *.facebook.com *.google-analytics.com *.doubleclick.net *.cardinalcommerce.com *.trustpilot.com *.adobedtm.com *.yotpo.com *.authorize.net *.zopim.com *.zopim.io *.zdassets.com yotpo.com www.yotpo.com p.yotpo.com staticw2.yotpo.com w2.yotpo.com 'self' 'unsafe-inline'; child-src http: https: blob: 'self' 'unsafe-inline'; default-src 'self' 'unsafe-inline' 'unsafe-eval'; base-uri 'self' 'unsafe-inline'; report-uri http://csp-reporting-service.com/my-project/endpoint; report-to report-endpoint;
text/html; charset=UTF-8
Tue, 09 Jan 2024 20:37:58 GMT
Mon, 09 Jan 2023 20:37:57 GMT
no-cache
{"group":"report-endpoint","max_age":10886400,"endpoints":[{"url":"http:\/\/csp-reporting-service.com\/my-project\/endpoint"}]}
nginx
PHPSESSID=474417bda52298b9aa7fcfb221caa1eb; expires=Wed, 10-Jan-2024 06:37:57 GMT; Max-Age=36000; path=/; domain=www.motocentral.co.uk; secure; HttpOnly; SameSite=Lax, searchReport-log=0; path=/; secure; HttpOnly; SameSite=Lax
max-age=31536000; includeSubDomains
Accept-Encoding
BYPASS
nosniff
SAMEORIGIN
1; mode=block
|