atoka.io Review

 User-agent: *
Disallow: /public/it/azienda/-/
Disallow: /public/en/
Disallow: /it/try-atoka/
Disallow: /en/try-atoka/
Disallow: /it/login/
Disallow: /en/login/
Disallow: /login/
Disallow: /cerved/login/
Disallow: /pages/it/tos-inbiz/
Disallow: /pages/en/tos-inbiz/
Sitemap: https://atoka.io/sitemap.xml

HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Fri, 02 Jan 2026 22:03:53 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://atoka.io/
X-Cache: Redirect from cloudfront
Via: 1.1 bc03fbe74b1fbdd4f922c17cb0307da2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: YYC51-P1
Alt-Svc: h3=":443"; ma=86400
X-Amz-Cf-Id: kWSxdt1pX1HcnHp_SCYacuQC0OV1ABbPSV0JiYwuz8bFM_92ndZflw==
Content-Security-Policy: object-src 'none'; frame-ancestors 'self'; report-to csp-report; report-uri https://csp-report-receiver.atoka.io/report/atoka-production/
X-Content-Type-Options: nosniff
Cache-Control: no-cache
Content-Security-Policy-Report-Only: form-action 'self'; report-to csp-report; report-uri https://csp-report-receiver.atoka.io/report/atoka-production/
Reporting-Endpoints: csp-report=https://csp-report-receiver.atoka.io/report/atoka-production/

HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Date: Fri, 02 Jan 2026 22:03:54 GMT
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-XSS-Protection: 1; mode=block
Server: openresty
Location: /it/
Vary: Accept-Language, Cookie
x-sd-trace-id: 7b1cc977666896c22f3b9f93b6054189
x-sd-trace-sampled: false
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin
Referrer-Policy: strict-origin-when-cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Set-Cookie: sessionid=ctdzgetpsabgos6pjjso8qfd33ip6p5b; expires=Fri, 16 Jan 2026 22:03:54 GMT; HttpOnly; Max-Age=1209600; Path=/; SameSite=Lax; Secure
X-Cache: Miss from cloudfront
Via: 1.1 4d29672d40f6825ae50a060aa684dbe8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: SEA900-P4
Alt-Svc: h3=":443"; ma=86400
X-Amz-Cf-Id: x5QPEGwGz-4LUvqiJBD9zCnjX7CMSQ-sJU0bWPiaWkJQCuxaCUxyJQ==
Content-Security-Policy: object-src 'none'; frame-ancestors 'self'; report-to csp-report; report-uri https://csp-report-receiver.atoka.io/report/atoka-production/
Cache-Control: no-cache
Content-Security-Policy-Report-Only: form-action 'self'; report-to csp-report; report-uri https://csp-report-receiver.atoka.io/report/atoka-production/
Reporting-Endpoints: csp-report=https://csp-report-receiver.atoka.io/report/atoka-production/

HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Date: Fri, 02 Jan 2026 22:03:54 GMT
X-XSS-Protection: 1; mode=block
Server: openresty
Location: https://atoka.io/pages/it/
X-Frame-Options: DENY
Content-Security-Policy: object-src 'none'; report-to csp-report; frame-ancestors 'self'; report-uri https://csp-report-receiver.atoka.io/report/atoka-production/
Content-Security-Policy-Report-Only: default-src 'self'; img-src 'self' media-atoka-io.s3-eu-west-1.amazonaws.com atoka.io api.mapbox.com *.iubenda.com; form-action 'self'; frame-src 'self' form.typeform.com *.iubenda.com; style-src 'self' *.iubenda.com fonts.gstatic.com fonts.googleapis.com *.fontawesome.com atoka.io 'unsafe-inline'; script-src 'self' strict-dynamic cdn.mxpnl.com *.iubenda.com sentry.io atoka.io tr.atoka.io *.fontawesome.com cdnjs.cloudflare.com cervedapps.containers.piwik.pro www.googletagmanager.com www.google.com maxcdn.bootstrapcdn.com player.vimeo.com oss.maxcdn.com cdn.jsdelivr.net 'unsafe-eval'; font-src 'self' fonts.gstatic.com fonts.googleapis.com *.fontawesome.com data:; report-to csp-report; connect-src 'self' api.mixpanel.com api.amplitude.com *.iubenda.com *.ingest.sentry.io *.fontawesome.com *.atoka.io cervedapps.piwik.pro; report-uri https://csp-report-receiver.atoka.io/report/atoka-production/
Content-Language: it
Vary: Cookie
x-sd-trace-id: 193f83e9a360d68ec9df100927af3c07
x-sd-trace-sampled: false
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin
Referrer-Policy: strict-origin-when-cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Set-Cookie: sessionid=i9ez1hy2gv9psii2nypkclhrlamnpxnm; expires=Fri, 16 Jan 2026 22:03:54 GMT; HttpOnly; Max-Age=1209600; Path=/; SameSite=Lax; Secure
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Cache: Miss from cloudfront
Via: 1.1 4d29672d40f6825ae50a060aa684dbe8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: SEA900-P4
Alt-Svc: h3=":443"; ma=86400
X-Amz-Cf-Id: BVA2HDr313rwcR212yFEFsR1HGgaTWcJNq-Tx0rT3iVe8atD7_CCEA==
Cache-Control: no-cache
Reporting-Endpoints: csp-report=https://csp-report-receiver.atoka.io/report/atoka-production/

HTTP/1.1 200 OK
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
x-amz-meta-md5chksum: de92ad7a00f36dbe995f7fdd623afa60
Last-Modified: Mon, 10 Nov 2025 13:35:03 GMT
x-amz-version-id: 2uD.MhoO0xBw1.ygtIGVcitTKZrxyy06
Server: AmazonS3
Content-Encoding: gzip
Date: Fri, 02 Jan 2026 22:03:55 GMT
ETag: W/"de92ad7a00f36dbe995f7fdd623afa60"
Vary: accept-encoding
X-Cache: RefreshHit from cloudfront
Via: 1.1 4d29672d40f6825ae50a060aa684dbe8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: SEA900-P4
Alt-Svc: h3=":443"; ma=86400
X-Amz-Cf-Id: 9_4EVgjiRiufty333QoNHDMOxH5_u2Mmx-Le8C4281Trs-i4c4ShuQ==
Content-Security-Policy: object-src 'none'; frame-ancestors 'self'; report-to csp-report; report-uri https://csp-report-receiver.atoka.io/report/atoka-production/
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Cache-Control: no-cache
Content-Security-Policy-Report-Only: form-action 'self'; report-to csp-report; report-uri https://csp-report-receiver.atoka.io/report/atoka-production/
Reporting-Endpoints: csp-report=https://csp-report-receiver.atoka.io/report/atoka-production/