HTTP/1.1 301 Moved Permanently
Date: Thu, 21 Oct 2021 03:06:47 GMT
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 21 Oct 2021 04:06:47 GMT
Location: https://www.revlonhairtools.com/
Set-Cookie: __cf_bm=PjInUGcOT4cG6k0.8hXF9SaJ1lmtvhnQxplP7BqGXII-1634785607-0-AWVUFGgpgjCMcihSA89U7OklMM3At0Nivm+3hzo3iex6wFuTD6AGRTVfE4MgtNppyPKMAnM68S3jCZ2y6d7KuFc=; path=/; expires=Thu, 21-Oct-21 03:36:47 GMT; domain=.revlonhairtools.com; HttpOnly; SameSite=None
Server: cloudflare
CF-RAY: 6a1745a03cb62c11-ORD
HTTP/2 200
date: Thu, 21 Oct 2021 03:06:48 GMT
content-type: text/html; charset=UTF-8
set-cookie: PHPSESSID=g1n866api23rtgj7ava1j8f9n4; expires=Thu, 21-Oct-2021 04:06:48 GMT; Max-Age=3600; path=/; domain=www.revlonhairtools.com; secure; HttpOnly; SameSite=Lax
expires: Tue, 20 Oct 2020 22:18:34 GMT
cache-control: max-age=0, must-revalidate, no-cache, no-store
pragma: no-cache
content-security-policy-report-only: font-src *.fontawesome.com https://fonts.gstatic.com https://www.google.com https://www.gstatic.com maxcdn.bootstrapcdn.com data: *.bootstrapcdn.com *.cloudflare.com *.twitter.com *.gstatic.com *.typekit.net *.twimg.com *.trustedshops.com *.googleapis.com *.magento.com *.revlonhairtools.com fonts.gstatic.com *.yotpo.com 'self' 'unsafe-inline'; form-action secure.authorize.net test.authorize.net geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com *.authorize.net *.cardinalcommerce.com *.heledigital.com *.facebook.com *.facebook.net *.signifyd.com *.braintree-api.com *.braintreegateway.com *.iterable.com *.yotpo.com 'self' 'unsafe-inline'; frame-ancestors 'self' 'unsafe-inline'; frame-src fast.amc.demdex.net secure.authorize.net test.authorize.net www.paypal.com www.sandbox.paypal.com player.vimeo.com www.googletagmanager.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com *.dotdigital-pages.com *.dotdigital.com cdn.dnky.co webchat.dotdigital.com c.paypal.com checkout.paypal.com assets.braintreegateway.com pay.google.com *.cardinalcommerce.com *.authorize.net *.signifyd.com *.online-metrix.net *.paypal.com *.youtube.com *.facebook.com *.facebook.net *.demdex.net *.doubleclick.net *.hotjar.com *.adyen.com *.xisecurenet.com *.adobedtm.com *.weltpixel.com www.xtento.com *.google.com *.custhelp.com *.oraclecloud.com *.trustarc.com *.googletagmanager.com *.paymetric.com *.revlonhairtools.com *.sdiapi.com *.braintree-api.com *.braintreegateway.com curv.net *.wesupply.xyz *.yotpo.com https://*.online-metrix.net https://imgs.signifyd.com 'self' 'unsafe-inline'; img-src assets.adobedtm.com amcglobal.sc.omtrdc.net dpm.demdex.net cm.everesttech.net widgets.magentocommerce.com data: www.googleadservices.com www.google-analytics.com www.paypalobjects.com t.paypal.com *.ftcdn.net *.behance.net www.paypal.com fpdbs.paypal.com fpdbs.sandbox.paypal.com *.vimeocdn.com s.ytimg.com www.sandbox.paypal.com b.stats.paypal.com dub.stats.paypal.com assets.braintreegateway.com c.paypal.com checkout.paypal.com *.magentocommerce.com *.googleadservices.com *.google-analytics.com *.paypal.com *.paypalobjects.com *.ytimg.com *.heledigital.com *.cloudflare.com *.gethatch.com *.quantserve.com *.doubleclick.net *.google.com *.facebook.com *.omtrdc.net *.demdex.net *.everesttech.net *.bazaarvoice.com *.adyen.com *.landofcoder.com *.klarna.com *.xtento.com *.gstatic.com *.cdninstagram.com *.rnengage.com *.trustarc.com *.co.in *.truste.com *.signifyd.com *.online-metrix.net curv.net *.fbcdn.net maps.googleapis.com www.xtento.com cdn.xtento.com *.yotpo.com https://imgs.signifyd.com https://*.online-metrix.net 'self' 'unsafe-inline'; script-src assets.adobedtm.com secure.authorize.net test.authorize.net www.googleadservices.com www.google-analytics.com www.paypalobjects.com js.braintreegateway.com www.paypal.com www.sandbox.paypal.com t.paypal.com s.ytimg.com video.google.com vimeo.com www.vimeo.com *.vimeocdn.com www.googletagmanager.com geostag.cardinalcommerce.com 1eafstag.cardinalcommerce.com geoapi.cardinalcommerce.com 1eafapi.cardinalcommerce.com songbird.cardinalcommerce.com includestest.ccdc02.com www.youtube.com *.trackedlink.net *.trackedweb.net *.dotdigital-pages.com cdn.dnky.co api.comapi.com webchat.dotdigital.com *.googleapis.com *.google.com *.gstatic.com assets.braintreegateway.com c.paypal.com pay.google.com api.braintreegateway.com api.sandbox.braintreegateway.com client-analytics.braintreegateway.com client-analytics.sandbox.braintreegateway.com *.adobedtm.com *.authorize.net *.cardinalcommerce.com *.ccdc02.com *.googleadservices.com *.google-analytics.com *.paypal.com *.paypalobjects.com *.braintreegateway.com *.ytimg.com *.vimeo.com *.signifyd.com *.youtube.com *.heledigital.com *.googletagmanager.com *.facebook.net *.facebook.com *.doubleclick.net *.xisecurenet.com *.magento.com *.wootric.com *.rapidspike.com *.cloudflare.com *.instagram.com *.oraclecloud.com *.atgsvcs.com *.rnengage.com *.custhelp.com *.rightnowtech.com *.newrelic.com *.nr-data.net *.trustarc.com *.sdiapi.com *.co.in *.braintree-api.com *.iterable.com curv.net ajax.googleapis.com https://www.googletagmanager.com tagmanager.google.com maps.googleapis.com www.xtento.com cdn.xtento.com *.yotpo.com https://cdn-scripts.signifyd.com https://imgs.signifyd.com 'self' 'unsafe-inline' 'unsafe-eval'; style-src getfirebug.com cdn.dnky.co webchat.dotdigital.com *.fontawesome.com *.googleapis.com *.google.com *.gstatic.com maxcdn.bootstrapcdn.com unsafe-inline *.getfirebug.com *.heledigital.com *.cloudflare.com *.twitter.com *.twimg.com *.typekit.net *.trustedshops.com *.usercentrics.eu *.bootstrapcdn.com *.magento.com *.custhelp.com *.googletagmanager.com curv.net fonts.googleapis.com tagmanager.google.com *.yotpo.com 'self' 'unsafe-inline'; object-src 'self' 'unsafe-inline'; media-src *.magento.com 'self' 'unsafe-inline'; manifest-src 'self' 'unsafe-inline'; connect-src dpm.demdex.net amcglobal.sc.omtrdc.net geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com *.trackedlink.net *.trackedweb.net *.dotdigital-pages.com api.comapi.com webchat.dotdigital.com http://dpm.demdex.net https://www.google.com https://www.gstatic.com www.paypal.com www.sandbox.paypal.com api.braintreegateway.com api.sandbox.braintreegateway.com client-analytics.braintreegateway.com client-analytics.sandbox.braintreegateway.com *.braintree-api.com *.signifyd.com *.cardinalcommerce.com *.facebook.com *.facebook.net *.cloudflare.com *.twitter.com *.paypal.com *.twimg.com *.oraclecloud.com *.google-analytics.com *.demdex.net *.omtrdc.net *.magento.com *.wootric.com *.herokuapp.com *.rapidspike.com *.doubleclick.net *.nr-data.net *.atgsvcs.com *.sdiapi.com *.braintreegateway.com *.trustarc.com *.iterable.com curv.net https://www.google-analytics.com *.instagram.com *.googleusercontent.com *.yotpo.com https://imgs.signifyd.com 'self' 'unsafe-inline'; child-src assets.braintreegateway.com c.paypal.com http: https: blob: 'self' 'unsafe-inline'; default-src 'self' 'unsafe-inline' 'unsafe-eval'; base-uri 'self' 'unsafe-inline';
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-ua-compatible: IE=edge
cf-cache-status: DYNAMIC
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
set-cookie: __cf_bm=vzpOXJ8pH8RX.AJ8VLYa8qF.ujEsYuD0_sSDIo1WhNk-1634785608-0-Adq13DFc6U6FXHhX+vH42Qi6Fi9bNqGC4SJnrLA4oK2XyfH/7Z/7PLt+Eza10B5hG9Xj8T1MitjSzL9+YwBqNHk=; path=/; expires=Thu, 21-Oct-21 03:36:48 GMT; domain=.revlonhairtools.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 6a1745a0e857493d-STL
|