couturelabs.com Review
couturelabs.com Review
| Titletag | Descriptiontag | language |
|---|
| Women's Fashion | Ladies Fashion in UAE | Couturelabs UAE | |
English |
| Ip adress | 104.26.15.85 | Nameserver | mary.ns.cloudflare.com
rory.ns.cloudflare.com |
Status code | 200 |
robots.txt
N/A
HTTP/1.1 301 Moved Permanently
Date: Sat, 23 Aug 2025 17:10:47 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: cloudflare
Location: https://www.couturelabs.com/en/
Content-Security-Policy: font-src https://cdn.checkout.com *.postpay.io https://applepay.cdn-apple.com https://*.hotjar.com https://d1yg8ocdjexswl.cloudfront.net *.cdninstagram.com *.instagram.com *.facebook.com *.facebook.net *.segmentify.com *.googletagmanager.com *.jsdelivr.net *.dropbox.com *.google.com *.cloudfront.net *.dropboxusercontent.com *.clarity.ms *.bing.com *.tiktok.com *.snapchat.com sc-static.net data: checkout.tabby.ai widgets.tabby.ai cdn.tabby.ai fonts.googleapis.com storage.googleapis.com *.fontawesome.com *.cloudflare.com *.twitter.com *.gstatic.com *.typekit.net *.twimg.com *.trustedshops.com *.googleapis.com https://fonts.bunny.net maxcdn.bootstrapcdn.com data: 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com *.facebook.com *.snaptchat.com https://d1yg8ocdjexswl.cloudfront.net www.facebook.com *.facebook.net *.segmentify.com *.googletagmanager.com *.cloudfront.net *.jsdelivr.net *.dropbox.com *.dropboxusercontent.com *.clarity.ms *.bing.com *.tiktok.com *.snapchat.com sc-static.net *.twitter.com 'self' connect.facebook.net graph.facebook.com business.facebook.com *.cardinalcommerce.com *.paypal.com 3ds-secure.cardcomplete.com www.clicksafe.lloydstsb.com pay.activa-card.com *.wirecard.com acs.sia.eu *.touchtechpayments.com www.securesuite.co.uk rsa3dsauth.com *.monzo.com *.arcot.com *.wlp-acs.com 'self' 'unsafe-inline'; frame-ancestors 'self'; frame-src fast.amc.demdex.net *.adobe.com bid.g.doubleclick.net *.youtube.com *.youtube-nocookie.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.paypal.com www.sandbox.paypal.com pilot-payflowlink.paypal.com player.vimeo.com https://www.google.com/recaptcha/ https://js.checkout.com *.klarna.com *.postpay.io https://applepay.cdn-apple.com https://d1yg8ocdjexswl.cloudfront.net *.cdninstagram.com *.instagram.com www.facebook.com *.facebook.net *.segmentify.com *.googletagmanager.com *.google.com *.cloudfront.net *.jsdelivr.net *.dropbox.com *.dropboxusercontent.com *.clarity.ms *.bing.com *.tiktok.com *.snapchat.com sc-static.net checkout.tabby.ai www.googletagmanager.com *.youtube.com/ connect.facebook.net graph.facebook.com business.facebook.com c.paypal.com checkout.paypal.com assets.braintreegateway.com pay.google.com *.cardinalcommerce.com *.paypal.com * *.wesupply.xyz https://wesupplylabs.com *.weltpixel.com 'self' 'unsafe-inline'; img-src assets.adobedtm.com amcglobal.sc.omtrdc.net dpm.demdex.net cm.everesttech.net *.adobe.com widgets.magentocommerce.com 'self' data: www.googleadservices.com www.google-analytics.com googleads.g.doubleclick.net www.google.com bid.g.doubleclick.net analytics.google.com www.googletagmanager.com *.ftcdn.net *.behance.net data: t.paypal.com www.paypal.com www.paypalobjects.com fpdbs.paypal.com fpdbs.sandbox.paypal.com *.vimeocdn.com i.ytimg.com *.youtube.com validator.swagger.io https://images.unsplash.com *.postpay.io https://*.hotjar.com https://d1yg8ocdjexswl.cloudfront.net *.cdninstagram.com *.instagram.com https://www.google.co.in www.facebook.com *.facebook.net https://d10lpsik1i8c69.cloudfront.net *.gstatic.com *.segmentify.com *.cloudfront.net *.googletagmanager.com *.jsdelivr.net *.dropbox.com *.google.com *.google.ae *.google.rs *.google.ba *.dropboxusercontent.com *.clarity.ms *.bing.com *.tiktok.com *.snapchat.com sc-static.net https://*.gumlet.io checkout.tabby.ai widgets.tabby.ai cdn.tabby.ai fonts.googleapis.com storage.googleapis.com *.disqus.com *.googleadservices.com *.google-analytics.com *.cloudflare.com *.klarna.com *.paypal.com *.twitter.com *.twimg.com *.ytimg.com *.lightemporium.com *.usercentrics.eu https://img.youtube.com https://firebasestorage.googleapis.com connect.facebook.net graph.facebook.com business.facebook.com www.sandbox.paypal.com b.stats.paypal.com dub.stats.paypal.com assets.braintreegateway.com c.paypal.com checkout.paypal.com data: 'self' 'unsafe-inline'; script-src assets.adobedtm.com *.adobe.com www.googleadservices.com www.google-analytics.com googleads.g.doubleclick.net analytics.google.com www.googletagmanager.com *.newrelic.com *.nr-data.net geostag.cardinalcommerce.com 1eafstag.cardinalcommerce.com geoapi.cardinalcommerce.com 1eafapi.cardinalcommerce.com songbird.cardinalcommerce.com includestest.ccdc02.com www.paypal.com www.sandbox.paypal.com www.paypalobjects.com t.paypal.com s.ytimg.com www.googleapis.com vimeo.com www.vimeo.com *.vimeocdn.com *.youtube.com https://www.gstatic.com/recaptcha/ https://www.google.com/recaptcha/ https://maps.googleapis.com https://cdn.jsdelivr.net/npm/@ryangjchandler/spruce@2.x.x/dist/spruce.umd.js https://*.checkout.com *.klarnacdn.net *.postpay.io https://checkout.tabby.ai https://applepay.cdn-apple.com https://d2r1yp2w7bby2u.cloudfront.net https://cdn.jsdelivr.net https://static.hotjar.com https://script.hotjar.com https://marketingplatform.google.com https://static.cloudflareinsights.com *.cloudflareinsights.com https://d1yg8ocdjexswl.cloudfront.net *.hotjar.io *.cdninstagram.com *.instagram.com www.facebook.com *.facebook.net https://d10lpsik1i8c69.cloudfront.net *.segmentify.com *.cloudflare.com *.sgmntfy.com *.googleapis.com *.googlesyndication.com *.cloudfront.net *.googletagmanager.com *.jsdelivr.net *.dropbox.com *.google.com *.dropboxusercontent.com *.clarity.ms *.bing.com *.tiktok.com *.snapchat.com sc-static.net *.mbirdcdn.net checkout.tabby.ai widgets.tabby.ai cdn.segment.com connect.facebook.net www.google.com cdn.sift.com score.jcsc.online seondf.com deviceinf.com getdeviceinf.com *.disqus.com https://z.moatads.com *.googleadservices.com *.google-analytics.com https://cdn.polyfill.io https://browser.sentry-cdn.com *.twitter.com *.twimg.com *.gstatic.com *.trustedshops.com *.usercentrics.eu *.fontawesome.com *.trackedlink.net *.avada.io graph.facebook.com business.facebook.com cdn.jsdelivr.net js.braintreegateway.com assets.braintreegateway.com c.paypal.com pay.google.com api.braintreegateway.com api.sandbox.braintreegateway.com client-analytics.braintreegateway.com client-analytics.sandbox.braintreegateway.com *.paypal.com songbirdstag.cardinalcommerce.com 'self' 'unsafe-inline' 'unsafe-eval'; style-src *.adobe.com https://cdn.checkout.com *.postpay.io https://applepay.cdn-apple.com https://*.hotjar.com https://cdn.jsdelivr.net https://d1yg8ocdjexswl.cloudfront.net *.cdninstagram.com *.instagram.com *.facebook.com *.facebook.net https://d10lpsik1i8c69.cloudfront.net *.segmentify.com *.googletagmanager.com *.cloudfront.net *.jsdelivr.net *.dropbox.com *.dropboxusercontent.com *.clarity.ms *.bing.com *.tiktok.com *.snapchat.com sc-static.net *.fontawesome.com *.cloudflare.com *.googleapis.com *.twitter.com *.twimg.com *.gstatic.com *.typekit.net *.trustedshops.com *.usercentrics.eu https://fonts.bunny.net cdn.jsdelivr.net maxcdn.bootstrapcdn.com unsafe-inline assets.braintreegateway.com 'self' 'unsafe-inline'; object-src 'self' 'unsafe-inline'; media-src *.adobe.com https://d10lpsik1i8c69.cloudfront.net *.segmentify.com *.googletagmanager.com *.jsdelivr.net *.dropbox.com *.google.com *.dropboxusercontent.com *.cloudfront.net *.clarity.ms *.bing.com *.tiktok.com *.snapchat.com sc-static.net 'self' 'unsafe-inline'; manifest-src 'self' 'unsafe-inline'; connect-src dpm.demdex.net amcglobal.sc.omtrdc.net www.google-analytics.com www.googleadservices.com analytics.google.com www.googletagmanager.com *.newrelic.com *.nr-data.net vimeo.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.sandbox.paypal.com www.paypalobjects.com www.paypal.com pilot-payflowlink.paypal.com https://maps.googleapis.com https://player.vimeo.com https://js.checkout.com *.klarnaevt.com *.postpay.io https://api.tabby.ai https://d1yg8ocdjexswl.cloudfront.net *.cloudfront.net https://*.hotjar.com wss://ws.hotjar.com https://*.hotjar.io https://content.hotjar.io *.cdninstagram.com https://graph.instagram.com https://stats.g.doubleclick.net www.facebook.com *.facebook.net https://settings.luckyorange.net wss://in.visitors.live wss://visitors.live *.amplitude.com *.google.com https://google.com *.segmentify.com *.googlesyndication.com ipinfo.io *.googletagmanager.com *.jsdelivr.net *.dropbox.com *.dropboxusercontent.com *.clarity.ms *.bing.com *.tiktok.com *.snapchat.com sc-static.net checkout.tabby.ai widgets.tabby.ai cdn.segment.com api.segment.com api.segment.io api.amplitude.com *.seondfresolver.com *.deviceinfresolver.com *.getdeviceinfresolver.com *.google-analytics.com *.analytics.google.com stats.g.doubleclick.net https://*.ingest.sentry.io *.cloudflare.com *.twitter.com *.paypal.com *.twimg.com *.googleadservices.com *.sandbox.paypal.com *.paypalobjects.com *.trackedlink.net *.ampproject.org https://dp-event-collector.tabby.ai/v1/t https://get.geojs.io *.avada.io connect.facebook.net graph.facebook.com business.facebook.com api.braintreegateway.com api.sandbox.braintreegateway.com client-analytics.braintreegateway.com client-analytics.sandbox.braintreegateway.com *.braintree-api.com *.cardinalcommerce.com 'self' 'unsafe-inline'; child-src assets.braintreegateway.com c.paypal.com *.paypal.com http: https: blob: 'self' 'unsafe-inline'; default-src *.seondnsresolve.com 'self' 'unsafe-inline' 'unsafe-eval'; base-uri 'self' 'unsafe-inline';
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Envmg0gtX9I1QU%2B4Nectii1kpn99Qo0ds%2BD3us0fB8E7YH06rGJxeQHZHLpweSIdnuemgx%2Buk8aP13AQGlW2STiurPqRHuT%2BHo2sLlZ2"}]}
Vary: Accept-Encoding
X-Varnish: 927498394
Via: 1.1 varnish (Varnish/6.0)
X-Magento-Cache-Debug: MISS
Pragma: no-cache
Expires: -1
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Cf-Cache-Status: DYNAMIC
Server-Timing: cfCacheStatus;desc="DYNAMIC"
Server-Timing: cfEdge;dur=22,cfOrigin;dur=708
Set-Cookie: PHPSESSID=jl0hfi3n12rjn12hbv53krcef1; SameSite=Lax; Path=/; Domain=couturelabs.com; Max-Age=86400; Expires=Sun, 24 Aug 2025 17:10:46 GMT
CF-RAY: 973c39abdaebd1ca-KIX
HTTP/1.1 301 Moved Permanently
Date: Sat, 23 Aug 2025 17:10:48 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Server: cloudflare
Location: https://www.couturelabs.com/
Cf-Cache-Status: DYNAMIC
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Server-Timing: cfCacheStatus;desc="DYNAMIC"
Server-Timing: cfEdge;dur=12,cfOrigin;dur=1027
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=YOeZxft%2Bc3nE70WmW1L8jkPG00b%2FsyenAe2Y4pGp5yQI7pDFuF28z0fEe0B7tf4VxUipINUFTE2dT1WeTmFRhbSD8MemhQ1UEYuXdyeFSgNVeQ%3D%3D"}]}
CF-RAY: 973c39b16a05d3c5-KIX
HTTP/1.1 200 OK
Date: Sat, 23 Aug 2025 17:10:49 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: cloudflare
Vary: Accept-Encoding
X-Built-With: Hyva Themes
X-Magento-Tags: mp_smtp_script,snowdog_menu_menu_,BLOCK_HTML,snowdog_menu_menu,cms_b_footer_content,store,cms_b,cms_b_geoip-redirect-dropdown,cms_p_192,cms_b_header_top_contact_block,cms_b_header_top_middle_content,cms_b_170,cms_b_hp-image-carousel-js,cms_b_couturelabs_footer_icons,cms_b_couturelabs_footer
Content-Security-Policy: font-src https://cdn.checkout.com *.postpay.io https://applepay.cdn-apple.com https://*.hotjar.com https://d1yg8ocdjexswl.cloudfront.net *.cdninstagram.com *.instagram.com *.facebook.com *.facebook.net *.segmentify.com *.googletagmanager.com *.jsdelivr.net *.dropbox.com *.google.com *.cloudfront.net *.dropboxusercontent.com *.clarity.ms *.bing.com *.tiktok.com *.snapchat.com sc-static.net data: checkout.tabby.ai widgets.tabby.ai cdn.tabby.ai fonts.googleapis.com storage.googleapis.com *.fontawesome.com *.cloudflare.com *.twitter.com *.gstatic.com *.typekit.net *.twimg.com *.trustedshops.com *.googleapis.com https://fonts.bunny.net maxcdn.bootstrapcdn.com data: 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com *.facebook.com *.snaptchat.com https://d1yg8ocdjexswl.cloudfront.net www.facebook.com *.facebook.net *.segmentify.com *.googletagmanager.com *.cloudfront.net *.jsdelivr.net *.dropbox.com *.dropboxusercontent.com *.clarity.ms *.bing.com *.tiktok.com *.snapchat.com sc-static.net *.twitter.com 'self' connect.facebook.net graph.facebook.com business.facebook.com *.cardinalcommerce.com *.paypal.com 3ds-secure.cardcomplete.com www.clicksafe.lloydstsb.com pay.activa-card.com *.wirecard.com acs.sia.eu *.touchtechpayments.com www.securesuite.co.uk rsa3dsauth.com *.monzo.com *.arcot.com *.wlp-acs.com 'self' 'unsafe-inline'; frame-ancestors 'self'; frame-src fast.amc.demdex.net *.adobe.com bid.g.doubleclick.net *.youtube.com *.youtube-nocookie.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.paypal.com www.sandbox.paypal.com pilot-payflowlink.paypal.com player.vimeo.com https://www.google.com/recaptcha/ https://js.checkout.com *.klarna.com *.postpay.io https://applepay.cdn-apple.com https://d1yg8ocdjexswl.cloudfront.net *.cdninstagram.com *.instagram.com www.facebook.com *.facebook.net *.segmentify.com *.googletagmanager.com *.google.com *.cloudfront.net *.jsdelivr.net *.dropbox.com *.dropboxusercontent.com *.clarity.ms *.bing.com *.tiktok.com *.snapchat.com sc-static.net checkout.tabby.ai www.googletagmanager.com *.youtube.com/ connect.facebook.net graph.facebook.com business.facebook.com c.paypal.com checkout.paypal.com assets.braintreegateway.com pay.google.com *.cardinalcommerce.com *.paypal.com * *.wesupply.xyz https://wesupplylabs.com *.weltpixel.com 'self' 'unsafe-inline'; img-src assets.adobedtm.com amcglobal.sc.omtrdc.net dpm.demdex.net cm.everesttech.net *.adobe.com widgets.magentocommerce.com 'self' data: www.googleadservices.com www.google-analytics.com googleads.g.doubleclick.net www.google.com bid.g.doubleclick.net analytics.google.com www.googletagmanager.com *.ftcdn.net *.behance.net data: t.paypal.com www.paypal.com www.paypalobjects.com fpdbs.paypal.com fpdbs.sandbox.paypal.com *.vimeocdn.com i.ytimg.com *.youtube.com validator.swagger.io https://images.unsplash.com *.postpay.io https://*.hotjar.com https://d1yg8ocdjexswl.cloudfront.net *.cdninstagram.com *.instagram.com https://www.google.co.in www.facebook.com *.facebook.net https://d10lpsik1i8c69.cloudfront.net *.gstatic.com *.segmentify.com *.cloudfront.net *.googletagmanager.com *.jsdelivr.net *.dropbox.com *.google.com *.google.ae *.google.rs *.google.ba *.dropboxusercontent.com *.clarity.ms *.bing.com *.tiktok.com *.snapchat.com sc-static.net https://*.gumlet.io checkout.tabby.ai widgets.tabby.ai cdn.tabby.ai fonts.googleapis.com storage.googleapis.com *.disqus.com *.googleadservices.com *.google-analytics.com *.cloudflare.com *.klarna.com *.paypal.com *.twitter.com *.twimg.com *.ytimg.com *.lightemporium.com *.usercentrics.eu https://img.youtube.com https://firebasestorage.googleapis.com connect.facebook.net graph.facebook.com business.facebook.com www.sandbox.paypal.com b.stats.paypal.com dub.stats.paypal.com assets.braintreegateway.com c.paypal.com checkout.paypal.com data: 'self' 'unsafe-inline'; script-src assets.adobedtm.com *.adobe.com www.googleadservices.com www.google-analytics.com googleads.g.doubleclick.net analytics.google.com www.googletagmanager.com *.newrelic.com *.nr-data.net geostag.cardinalcommerce.com 1eafstag.cardinalcommerce.com geoapi.cardinalcommerce.com 1eafapi.cardinalcommerce.com songbird.cardinalcommerce.com includestest.ccdc02.com www.paypal.com www.sandbox.paypal.com www.paypalobjects.com t.paypal.com s.ytimg.com www.googleapis.com vimeo.com www.vimeo.com *.vimeocdn.com *.youtube.com https://www.gstatic.com/recaptcha/ https://www.google.com/recaptcha/ https://maps.googleapis.com https://cdn.jsdelivr.net/npm/@ryangjchandler/spruce@2.x.x/dist/spruce.umd.js https://*.checkout.com *.klarnacdn.net *.postpay.io https://checkout.tabby.ai https://applepay.cdn-apple.com https://d2r1yp2w7bby2u.cloudfront.net https://cdn.jsdelivr.net https://static.hotjar.com https://script.hotjar.com https://marketingplatform.google.com https://static.cloudflareinsights.com *.cloudflareinsights.com https://d1yg8ocdjexswl.cloudfront.net *.hotjar.io *.cdninstagram.com *.instagram.com www.facebook.com *.facebook.net https://d10lpsik1i8c69.cloudfront.net *.segmentify.com *.cloudflare.com *.sgmntfy.com *.googleapis.com *.googlesyndication.com *.cloudfront.net *.googletagmanager.com *.jsdelivr.net *.dropbox.com *.google.com *.dropboxusercontent.com *.clarity.ms *.bing.com *.tiktok.com *.snapchat.com sc-static.net *.mbirdcdn.net checkout.tabby.ai widgets.tabby.ai cdn.segment.com connect.facebook.net www.google.com cdn.sift.com score.jcsc.online seondf.com deviceinf.com getdeviceinf.com *.disqus.com https://z.moatads.com *.googleadservices.com *.google-analytics.com https://cdn.polyfill.io https://browser.sentry-cdn.com *.twitter.com *.twimg.com *.gstatic.com *.trustedshops.com *.usercentrics.eu *.fontawesome.com *.trackedlink.net *.avada.io graph.facebook.com business.facebook.com cdn.jsdelivr.net js.braintreegateway.com assets.braintreegateway.com c.paypal.com pay.google.com api.braintreegateway.com api.sandbox.braintreegateway.com client-analytics.braintreegateway.com client-analytics.sandbox.braintreegateway.com *.paypal.com songbirdstag.cardinalcommerce.com 'self' 'unsafe-inline' 'unsafe-eval'; style-src *.adobe.com https://cdn.checkout.com *.postpay.io https://applepay.cdn-apple.com https://*.hotjar.com https://cdn.jsdelivr.net https://d1yg8ocdjexswl.cloudfront.net *.cdninstagram.com *.instagram.com *.facebook.com *.facebook.net https://d10lpsik1i8c69.cloudfront.net *.segmentify.com *.googletagmanager.com *.cloudfront.net *.jsdelivr.net *.dropbox.com *.dropboxusercontent.com *.clarity.ms *.bing.com *.tiktok.com *.snapchat.com sc-static.net *.fontawesome.com *.cloudflare.com *.googleapis.com *.twitter.com *.twimg.com *.gstatic.com *.typekit.net *.trustedshops.com *.usercentrics.eu https://fonts.bunny.net cdn.jsdelivr.net maxcdn.bootstrapcdn.com unsafe-inline assets.braintreegateway.com 'self' 'unsafe-inline'; object-src 'self' 'unsafe-inline'; media-src *.adobe.com https://d10lpsik1i8c69.cloudfront.net *.segmentify.com *.googletagmanager.com *.jsdelivr.net *.dropbox.com *.google.com *.dropboxusercontent.com *.cloudfront.net *.clarity.ms *.bing.com *.tiktok.com *.snapchat.com sc-static.net 'self' 'unsafe-inline'; manifest-src 'self' 'unsafe-inline'; connect-src dpm.demdex.net amcglobal.sc.omtrdc.net www.google-analytics.com www.googleadservices.com analytics.google.com www.googletagmanager.com *.newrelic.com *.nr-data.net vimeo.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.sandbox.paypal.com www.paypalobjects.com www.paypal.com pilot-payflowlink.paypal.com https://maps.googleapis.com https://player.vimeo.com https://js.checkout.com *.klarnaevt.com *.postpay.io https://api.tabby.ai https://d1yg8ocdjexswl.cloudfront.net *.cloudfront.net https://*.hotjar.com wss://ws.hotjar.com https://*.hotjar.io https://content.hotjar.io *.cdninstagram.com https://graph.instagram.com https://stats.g.doubleclick.net www.facebook.com *.facebook.net https://settings.luckyorange.net wss://in.visitors.live wss://visitors.live *.amplitude.com *.google.com https://google.com *.segmentify.com *.googlesyndication.com ipinfo.io *.googletagmanager.com *.jsdelivr.net *.dropbox.com *.dropboxusercontent.com *.clarity.ms *.bing.com *.tiktok.com *.snapchat.com sc-static.net checkout.tabby.ai widgets.tabby.ai cdn.segment.com api.segment.com api.segment.io api.amplitude.com *.seondfresolver.com *.deviceinfresolver.com *.getdeviceinfresolver.com *.google-analytics.com *.analytics.google.com stats.g.doubleclick.net https://*.ingest.sentry.io *.cloudflare.com *.twitter.com *.paypal.com *.twimg.com *.googleadservices.com *.sandbox.paypal.com *.paypalobjects.com *.trackedlink.net *.ampproject.org https://dp-event-collector.tabby.ai/v1/t https://get.geojs.io *.avada.io connect.facebook.net graph.facebook.com business.facebook.com api.braintreegateway.com api.sandbox.braintreegateway.com client-analytics.braintreegateway.com client-analytics.sandbox.braintreegateway.com *.braintree-api.com *.cardinalcommerce.com 'self' 'unsafe-inline'; child-src assets.braintreegateway.com c.paypal.com *.paypal.com http: https: blob: 'self' 'unsafe-inline'; default-src *.seondnsresolve.com 'self' 'unsafe-inline' 'unsafe-eval'; base-uri 'self' 'unsafe-inline';
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=5LhnBd5NxyRgwPLNwON5RG2skplZXoTmiLLjkeQFAhmlWaQrL6H%2FVdBF%2FfhM4sX%2FucnA6%2Bml6fOpu%2B45EY6sd%2FlCIat9%2FmQOPBS%2BRbCkQU5ZUw%3D%3D"}]}
X-Varnish: 928448529 274628620
Via: 1.1 varnish (Varnish/6.0)
X-Magento-Cache-Debug: HIT
Grace: none
Pragma: no-cache
Expires: -1
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Server-Timing: cfCacheStatus;desc="DYNAMIC"
Server-Timing: cfEdge;dur=4,cfOrigin;dur=684
Cf-Cache-Status: DYNAMIC
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Content-Encoding: br
CF-RAY: 973c39b80b22d3c5-KIX