atoka.io Review

 User-agent: *
Disallow: /public/it/azienda/-/
Disallow: /public/en/
Disallow: /it/try-atoka/
Disallow: /en/try-atoka/
Disallow: /it/login/
Disallow: /en/login/
Disallow: /login/
Disallow: /cerved/login/
Disallow: /pages/it/tos-inbiz/
Disallow: /pages/en/tos-inbiz/
Sitemap: https://atoka.io/sitemap.xml

HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Fri, 19 Dec 2025 10:56:53 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://atoka.io/
X-Cache: Redirect from cloudfront
Via: 1.1 86444509002d660d9bf26870562a58a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: SEA900-P4
Alt-Svc: h3=":443"; ma=86400
X-Amz-Cf-Id: mC8W5kAoYcJZnH2L4MF6DA1f9upu7yjt6_wOXcrjbQx2hMAybcwQjQ==
Content-Security-Policy: object-src 'none'; frame-ancestors 'self'; report-to csp-report; report-uri https://csp-report-receiver.atoka.io/report/atoka-production/
X-Content-Type-Options: nosniff
Cache-Control: no-cache
Content-Security-Policy-Report-Only: form-action 'self'; report-to csp-report; report-uri https://csp-report-receiver.atoka.io/report/atoka-production/
Reporting-Endpoints: csp-report=https://csp-report-receiver.atoka.io/report/atoka-production/

HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Date: Fri, 19 Dec 2025 10:56:54 GMT
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-XSS-Protection: 1; mode=block
Server: openresty
Location: /it/
Vary: Accept-Language, Cookie
x-sd-trace-id: 5189ef54cc5937076d1624fdd32123b3
x-sd-trace-sampled: false
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin
Referrer-Policy: strict-origin-when-cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Set-Cookie: sessionid=7b2zp0mextnuijqf00jaocuz4dveagv7; expires=Fri, 02 Jan 2026 10:56:54 GMT; HttpOnly; Max-Age=1209600; Path=/; SameSite=Lax; Secure
X-Cache: Miss from cloudfront
Via: 1.1 edbde6f5035529435e07e62f80ccc742.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: SEA900-P4
Alt-Svc: h3=":443"; ma=86400
X-Amz-Cf-Id: r_flqXCkEixxYQPXy97THJ8SzEPZvnyxZK-DMOG83AGMX1yv6O8x8A==
Content-Security-Policy: object-src 'none'; frame-ancestors 'self'; report-to csp-report; report-uri https://csp-report-receiver.atoka.io/report/atoka-production/
Cache-Control: no-cache
Content-Security-Policy-Report-Only: form-action 'self'; report-to csp-report; report-uri https://csp-report-receiver.atoka.io/report/atoka-production/
Reporting-Endpoints: csp-report=https://csp-report-receiver.atoka.io/report/atoka-production/

HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Date: Fri, 19 Dec 2025 10:56:54 GMT
X-XSS-Protection: 1; mode=block
Server: openresty
Location: https://atoka.io/pages/it/
X-Frame-Options: DENY
Content-Security-Policy: report-to csp-report; object-src 'none'; frame-ancestors 'self'; report-uri https://csp-report-receiver.atoka.io/report/atoka-production/
Content-Security-Policy-Report-Only: report-to csp-report; img-src 'self' media-atoka-io.s3-eu-west-1.amazonaws.com atoka.io api.mapbox.com *.iubenda.com; default-src 'self'; connect-src 'self' api.mixpanel.com api.amplitude.com *.iubenda.com *.ingest.sentry.io *.fontawesome.com *.atoka.io cervedapps.piwik.pro; font-src 'self' fonts.gstatic.com fonts.googleapis.com *.fontawesome.com data:; frame-src 'self' form.typeform.com *.iubenda.com; script-src 'self' strict-dynamic cdn.mxpnl.com *.iubenda.com sentry.io atoka.io tr.atoka.io *.fontawesome.com cdnjs.cloudflare.com cervedapps.containers.piwik.pro www.googletagmanager.com www.google.com maxcdn.bootstrapcdn.com player.vimeo.com oss.maxcdn.com cdn.jsdelivr.net 'unsafe-eval'; form-action 'self'; style-src 'self' *.iubenda.com fonts.gstatic.com fonts.googleapis.com *.fontawesome.com atoka.io 'unsafe-inline'; report-uri https://csp-report-receiver.atoka.io/report/atoka-production/
Content-Language: it
Vary: Cookie
x-sd-trace-id: 9fd4d9bf586779b5498adafa39e20c0a
x-sd-trace-sampled: false
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin
Referrer-Policy: strict-origin-when-cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Set-Cookie: sessionid=lzr84m57rpp7lgnku4sx994c5uzksixr; expires=Fri, 02 Jan 2026 10:56:54 GMT; HttpOnly; Max-Age=1209600; Path=/; SameSite=Lax; Secure
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Cache: Miss from cloudfront
Via: 1.1 edbde6f5035529435e07e62f80ccc742.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: SEA900-P4
Alt-Svc: h3=":443"; ma=86400
X-Amz-Cf-Id: TSyR9MvM37hsYZqePUg-Ir35I5qF6QsiLyrID_y200JXwbGrqwp3VA==
Cache-Control: no-cache
Reporting-Endpoints: csp-report=https://csp-report-receiver.atoka.io/report/atoka-production/

HTTP/1.1 200 OK
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
x-amz-meta-md5chksum: de92ad7a00f36dbe995f7fdd623afa60
Last-Modified: Mon, 10 Nov 2025 13:35:03 GMT
x-amz-version-id: 2uD.MhoO0xBw1.ygtIGVcitTKZrxyy06
Server: AmazonS3
Content-Encoding: br
Date: Fri, 19 Dec 2025 10:56:55 GMT
ETag: W/"de92ad7a00f36dbe995f7fdd623afa60"
Vary: accept-encoding
X-Cache: RefreshHit from cloudfront
Via: 1.1 edbde6f5035529435e07e62f80ccc742.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: SEA900-P4
Alt-Svc: h3=":443"; ma=86400
X-Amz-Cf-Id: _LbCm5L9UKz0JqQ31lVTzTPUA_fgoEQc7ooZz1hEm1KpLeFpN4MSqg==
Content-Security-Policy: object-src 'none'; frame-ancestors 'self'; report-to csp-report; report-uri https://csp-report-receiver.atoka.io/report/atoka-production/
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Cache-Control: no-cache
Content-Security-Policy-Report-Only: form-action 'self'; report-to csp-report; report-uri https://csp-report-receiver.atoka.io/report/atoka-production/
Reporting-Endpoints: csp-report=https://csp-report-receiver.atoka.io/report/atoka-production/