Accept, Content-Type, Content-Language, Accept-Language, Access-Control-Allow-Headers, Origin, Authorization, X-Requested-With, sid, baggage, sentry-trace, ngsw-bypass, deviceId
POST,GET,PUT,DELETE,OPTIONS
*
Date
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
no-store
gzip
style-src 'self' 'unsafe-inline';default-src 'self' data: blob: *.aigens.com *.order.place *.googleusercontent.com *.gstatic.com *.google.com *.googleapis.com *.stripe.com *.googletagmanager.com *.fullstory.com *.sentry-cdn.com js.appboycdn.com *.google.com.hk *.braze.com *.appspot.com *.googleapis.com *.pizzahut.com.hk *.storellet.com *.hsbc.com.hk order2.pizzahut.com.mo pizzahut.com.mo *.pizzahut.com.mo *.doubleclick.net braze-images.com *.nbc.com.hk *.sentry.io *.ingest.sentry.io *.google-analytics.com *.googleadservices.com connect.facebook.net *.quantserve.com jscdn.appier.net *.quantcount.com *.chinesean.com;object-src 'self' data: blob: *.aigens.com *.order.place *.googleusercontent.com *.gstatic.com *.google.com *.googleapis.com *.stripe.com *.googletagmanager.com *.fullstory.com *.sentry-cdn.com js.appboycdn.com *.google.com.hk *.braze.com *.appspot.com *.googleapis.com *.pizzahut.com.hk *.storellet.com *.hsbc.com.hk order2.pizzahut.com.mo pizzahut.com.mo *.pizzahut.com.mo *.doubleclick.net braze-images.com *.nbc.com.hk *.sentry.io *.ingest.sentry.io *.google-analytics.com *.googleadservices.com connect.facebook.net *.quantserve.com jscdn.appier.net *.quantcount.com *.chinesean.com;img-src 'self' data: blob: *.aigens.com *.order.place *.googleusercontent.com *.gstatic.com *.google.com *.googleapis.com *.stripe.com *.googletagmanager.com *.fullstory.com *.sentry-cdn.com js.appboycdn.com *.google.com.hk *.braze.com *.appspot.com *.googleapis.com *.pizzahut.com.hk *.storellet.com *.hsbc.com.hk order2.pizzahut.com.mo pizzahut.com.mo *.pizzahut.com.mo *.doubleclick.net braze-images.com *.nbc.com.hk *.sentry.io *.ingest.sentry.io *.google-analytics.com *.googleadservices.com connect.facebook.net *.quantserve.com jscdn.appier.net *.quantcount.com *.chinesean.com;style-src 'self' data: blob: *.aigens.com *.order.place *.googleusercontent.com *.gstatic.com *.google.com *.googleapis.com *.stripe.com *.googletagmanager.com *.fullstory.com *.sentry-cdn.com js.appboycdn.com *.google.com.hk *.braze.com *.appspot.com *.googleapis.com *.pizzahut.com.hk *.storellet.com *.hsbc.com.hk order2.pizzahut.com.mo pizzahut.com.mo *.pizzahut.com.mo *.doubleclick.net braze-images.com *.nbc.com.hk *.sentry.io *.ingest.sentry.io *.google-analytics.com *.googleadservices.com connect.facebook.net *.quantserve.com jscdn.appier.net *.quantcount.com *.chinesean.com;connect-src 'self' data: blob: *.aigens.com *.order.place *.googleusercontent.com *.gstatic.com *.google.com *.googleapis.com *.stripe.com *.googletagmanager.com *.fullstory.com *.sentry-cdn.com js.appboycdn.com *.google.com.hk *.braze.com *.appspot.com *.googleapis.com *.pizzahut.com.hk *.storellet.com *.hsbc.com.hk order2.pizzahut.com.mo pizzahut.com.mo *.pizzahut.com.mo *.doubleclick.net braze-images.com *.nbc.com.hk *.sentry.io *.ingest.sentry.io *.google-analytics.com *.googleadservices.com connect.facebook.net *.quantserve.com jscdn.appier.net *.quantcount.com *.chinesean.com;script-src 'self' 'unsafe-inline' 'unsafe-eval' data: blob: *.aigens.com *.order.place *.googleusercontent.com *.gstatic.com *.google.com *.googleapis.com *.stripe.com *.googletagmanager.com *.fullstory.com *.sentry-cdn.com js.appboycdn.com *.google.com.hk *.braze.com *.appspot.com *.googleapis.com *.pizzahut.com.hk *.storellet.com *.hsbc.com.hk order2.pizzahut.com.mo pizzahut.com.mo *.pizzahut.com.mo *.doubleclick.net braze-images.com *.nbc.com.hk *.sentry.io *.ingest.sentry.io *.google-analytics.com *.googleadservices.com connect.facebook.net *.quantserve.com jscdn.appier.net *.quantcount.com *.chinesean.com;
text/html
Tue, 09 Jan 2024 11:00:13 GMT
microphone=(), usb=()
no-cache
strict-origin-when-cross-origin
Google Frontend
max-age=7776000
chunked
Accept-Encoding
1.1 google
a62001cec1b1a16fbaf8df375d73ed28
nosniff
Deny
|