atoka.io Review

 User-agent: *
Disallow: /public/it/azienda/-/
Disallow: /public/en/
Disallow: /it/try-atoka/
Disallow: /en/try-atoka/
Disallow: /it/login/
Disallow: /en/login/
Disallow: /login/
Disallow: /cerved/login/
Disallow: /pages/it/tos-inbiz/
Disallow: /pages/en/tos-inbiz/
Sitemap: https://atoka.io/sitemap.xml

HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Thu, 11 Dec 2025 03:01:21 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://atoka.io/
X-Cache: Redirect from cloudfront
Via: 1.1 d0b542d4d983f78a581bde3d10c52382.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LAX53-P3
Alt-Svc: h3=":443"; ma=86400
X-Amz-Cf-Id: q_FEjD-KAg-2DOFR50o0qUZvMheNQ2e9mzehc8FrYI5lJGcf20ri1g==
Content-Security-Policy: object-src 'none'; frame-ancestors 'self'; report-to csp-report; report-uri https://csp-report-receiver.atoka.io/report/atoka-production/
X-Content-Type-Options: nosniff
Cache-Control: no-cache
Content-Security-Policy-Report-Only: form-action 'self'; report-to csp-report; report-uri https://csp-report-receiver.atoka.io/report/atoka-production/
Reporting-Endpoints: csp-report=https://csp-report-receiver.atoka.io/report/atoka-production/

HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Date: Thu, 11 Dec 2025 03:01:22 GMT
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-XSS-Protection: 1; mode=block
Server: openresty
Location: /it/
Vary: Accept-Language, Cookie
x-sd-trace-id: f95dccf26aa6bb77609f349ee71f1170
x-sd-trace-sampled: false
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin
Referrer-Policy: strict-origin-when-cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Set-Cookie: sessionid=vnn575clhbsvmws7mg2ffllrklx19uyu; expires=Thu, 25 Dec 2025 03:01:22 GMT; HttpOnly; Max-Age=1209600; Path=/; SameSite=Lax; Secure
X-Cache: Miss from cloudfront
Via: 1.1 82f2cf6e6ef43a962e53cadf485a95b6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: SEA900-P4
Alt-Svc: h3=":443"; ma=86400
X-Amz-Cf-Id: DUL69QJTB3gd7Fi8FZJcjKhBF4Gc7E9wZD_Y7yI5uyxunuOjElDN1Q==
Content-Security-Policy: object-src 'none'; frame-ancestors 'self'; report-to csp-report; report-uri https://csp-report-receiver.atoka.io/report/atoka-production/
Cache-Control: no-cache
Content-Security-Policy-Report-Only: form-action 'self'; report-to csp-report; report-uri https://csp-report-receiver.atoka.io/report/atoka-production/
Reporting-Endpoints: csp-report=https://csp-report-receiver.atoka.io/report/atoka-production/

HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Date: Thu, 11 Dec 2025 03:01:22 GMT
X-XSS-Protection: 1; mode=block
Server: openresty
Location: https://atoka.io/pages/it/
X-Frame-Options: DENY
Content-Security-Policy: report-to csp-report; frame-ancestors 'self'; object-src 'none'; report-uri https://csp-report-receiver.atoka.io/report/atoka-production/
Content-Security-Policy-Report-Only: connect-src 'self' api.mixpanel.com api.amplitude.com *.iubenda.com *.ingest.sentry.io *.fontawesome.com *.atoka.io cervedapps.piwik.pro; style-src 'self' *.iubenda.com fonts.gstatic.com fonts.googleapis.com *.fontawesome.com atoka.io 'unsafe-inline'; script-src 'self' strict-dynamic cdn.mxpnl.com *.iubenda.com sentry.io atoka.io tr.atoka.io *.fontawesome.com cdnjs.cloudflare.com cervedapps.containers.piwik.pro www.googletagmanager.com www.google.com maxcdn.bootstrapcdn.com player.vimeo.com oss.maxcdn.com cdn.jsdelivr.net 'unsafe-eval'; report-to csp-report; frame-src 'self' form.typeform.com *.iubenda.com; form-action 'self'; img-src 'self' media-atoka-io.s3-eu-west-1.amazonaws.com atoka.io api.mapbox.com *.iubenda.com; font-src 'self' fonts.gstatic.com fonts.googleapis.com *.fontawesome.com data:; default-src 'self'; report-uri https://csp-report-receiver.atoka.io/report/atoka-production/
Content-Language: it
Vary: Cookie
x-sd-trace-id: 77143c93076581654b834efd5a9e45b1
x-sd-trace-sampled: false
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin
Referrer-Policy: strict-origin-when-cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Set-Cookie: sessionid=imiz5uqias0s0mw9q5lpmyxheg9ixob0; expires=Thu, 25 Dec 2025 03:01:22 GMT; HttpOnly; Max-Age=1209600; Path=/; SameSite=Lax; Secure
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Cache: Miss from cloudfront
Via: 1.1 82f2cf6e6ef43a962e53cadf485a95b6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: SEA900-P4
Alt-Svc: h3=":443"; ma=86400
X-Amz-Cf-Id: UjlFsIFi-nLEBhY92pLdR6LcBYowtWBIw7D9DjCiXr7i7dN-E7ovUw==
Cache-Control: no-cache
Reporting-Endpoints: csp-report=https://csp-report-receiver.atoka.io/report/atoka-production/

HTTP/1.1 200 OK
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
x-amz-meta-md5chksum: de92ad7a00f36dbe995f7fdd623afa60
Last-Modified: Mon, 10 Nov 2025 13:35:03 GMT
x-amz-version-id: 2uD.MhoO0xBw1.ygtIGVcitTKZrxyy06
Server: AmazonS3
Content-Encoding: gzip
Date: Thu, 11 Dec 2025 03:01:23 GMT
ETag: W/"de92ad7a00f36dbe995f7fdd623afa60"
Vary: accept-encoding
X-Cache: RefreshHit from cloudfront
Via: 1.1 82f2cf6e6ef43a962e53cadf485a95b6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: SEA900-P4
Alt-Svc: h3=":443"; ma=86400
X-Amz-Cf-Id: 1hXJrFZXBdA_RSDo7YUTPqTxjlQ63OQqNeuCMveUPXyIU291sexH6A==
Content-Security-Policy: object-src 'none'; frame-ancestors 'self'; report-to csp-report; report-uri https://csp-report-receiver.atoka.io/report/atoka-production/
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Cache-Control: no-cache
Content-Security-Policy-Report-Only: form-action 'self'; report-to csp-report; report-uri https://csp-report-receiver.atoka.io/report/atoka-production/
Reporting-Endpoints: csp-report=https://csp-report-receiver.atoka.io/report/atoka-production/