Age: 68107

Via: 1.1 8fcaa17120d24b3b8568c63a2805148e.cloudfront.net (CloudFront), 1.1 google

Date: Mon, 06 May 2024 14:31:06 GMT

Vary: Accept-Encoding, rbz-no-cache

Server: rhino-core-shield

Alt-Svc: clear

X-Cache: Hit from cloudfront

X-Amz-Cf-Id: M1X2ZYS2Eac8d4nOF5sAGy2tSp-uDVuePIiHSiECSdzTseN3KEI8fg==

Content-Type: text/html

X-Amz-Cf-Pop: BOM78-P9

Cache-Control: no-store, no-cache, must-revalidate, max-age=0

X-Frame-Options: SAMEORIGIN

Originalhostheader: www.cleartrip.com

X-Content-Type-Options: nosniff

Strict-Transport-Security: max-age=31536000; includeSubDomains

X-Amz-Server-Side-Encryption: AES256

Content-Security-Policy-Report-Only: script-src 'unsafe-eval' 'unsafe-inline' 'self' storage.googleapis.com cdn.ravenjs.com tpc.googlesyndication.com maps.googleapis.com cdn.ampproject.org sb.scorecardresearch.com cdnjs.cloudflare.com www.google.com cdn.jsdelivr.net *.google-analytics.com clk.2trk.info client.px-cloud.net polyfill.io d2r1yp2w7bby2u.cloudfront.net www.googletagmanager.com www.googleoptimize.com wzrkt.com js-agent.newrelic.com googleads.g.doubleclick.net bat.bing.com *.hotjar.com www.googleadservices.com s.adx.io *.criteo.com migs.mastercard.com.au connect.facebook.net cdn.branch.io static.ads-twitter.com www.recaptcha.net app.link www.gstatic.com browser.sentry-cdn.com *.cltpstatic.com cdn.inspectlet.com static.criteo.net *.nr-data.net cdn.preciso.net eu1.clevertap-prod.com events.statsigapi.net; style-src 'self' 'unsafe-inline' cdnjs.cloudflare.com storage.googleapis.com maxcdn.bootstrapcdn.com cdn.jsdelivr.net use.fontawesome.com *.cltpstatic.com rsms.me fonts.googleapis.com fontlibrary.org blob:; connect-src 'self' google.com *.google.com *.doubleclick.net sentry.io sdk.joinsherpa.io cdn.preciso.net cdn.ampproject.org *.creativecdn.com events.statsigapi.net eu1.clevertap-prod.com featuregates.org *.facebook.com *.criteo.com cdn.ravenjs.com *.google-analytics.com *.branch.io *.px-cloud.net *.cltpstatic.com *.nr-data.net www.google.co.in bat.bing.com vc.hotjar.io in.hotjar.com b.px-cdn.net *.cleartrip.com hn.inspectlet.com *.salesforce.com; frame-src 'self' tpc.googlesyndication.com *.creativecdn.com *.doubleclick.net vars.hotjar.com *.criteo.com static.criteo.net ck.2trk.info my.rtmarks.net redirtrack.tech www.recaptcha.net; form-action api.razorpay.com; font-src 'self' use.fontawesome.com cdnjs.cloudflare.com maxcdn.bootstrapcdn.com storage.googleapis.com rsms.me *.cltpstatic.com fonts.gstatic.com fontlibrary.org; img-src data: https://*; manifest-src 'self' fastui.cltpstatic.com; media-src 'self' fastui.cltpstatic.com; object-src 'none'; base-uri 'self'; worker-src 'self'; frame-ancestors 'self'; report-uri https://csp-flkt.domdog.io/report-uri/flipkart.com/2/1-2;

Via: 1.1 google

Date: Mon, 06 May 2024 14:31:06 GMT

Vary: rbz-no-cache

Server: rhino-core-shield

Location: https://www.cleartrip.com/

Content-Type: text/html

Cache-Control: no-store, no-cache, must-revalidate, max-age=0

Content-Length: 174

X-Frame-Options: SAMEORIGIN

Strict-Transport-Security: max-age=31536000; includeSubDomains

Content-Security-Policy-Report-Only: script-src 'unsafe-eval' 'unsafe-inline' 'self' storage.googleapis.com cdn.ravenjs.com tpc.googlesyndication.com maps.googleapis.com cdn.ampproject.org sb.scorecardresearch.com cdnjs.cloudflare.com www.google.com cdn.jsdelivr.net *.google-analytics.com clk.2trk.info client.px-cloud.net polyfill.io d2r1yp2w7bby2u.cloudfront.net www.googletagmanager.com www.googleoptimize.com wzrkt.com js-agent.newrelic.com googleads.g.doubleclick.net bat.bing.com *.hotjar.com www.googleadservices.com s.adx.io *.criteo.com migs.mastercard.com.au connect.facebook.net cdn.branch.io static.ads-twitter.com www.recaptcha.net app.link www.gstatic.com browser.sentry-cdn.com *.cltpstatic.com cdn.inspectlet.com static.criteo.net *.nr-data.net cdn.preciso.net eu1.clevertap-prod.com events.statsigapi.net; style-src 'self' 'unsafe-inline' cdnjs.cloudflare.com storage.googleapis.com maxcdn.bootstrapcdn.com cdn.jsdelivr.net use.fontawesome.com *.cltpstatic.com rsms.me fonts.googleapis.com fontlibrary.org blob:; connect-src 'self' google.com *.google.com *.doubleclick.net sentry.io sdk.joinsherpa.io cdn.preciso.net cdn.ampproject.org *.creativecdn.com events.statsigapi.net eu1.clevertap-prod.com featuregates.org *.facebook.com *.criteo.com cdn.ravenjs.com *.google-analytics.com *.branch.io *.px-cloud.net *.cltpstatic.com *.nr-data.net www.google.co.in bat.bing.com vc.hotjar.io in.hotjar.com b.px-cdn.net *.cleartrip.com hn.inspectlet.com *.salesforce.com; frame-src 'self' tpc.googlesyndication.com *.creativecdn.com *.doubleclick.net vars.hotjar.com *.criteo.com static.criteo.net ck.2trk.info my.rtmarks.net redirtrack.tech www.recaptcha.net; form-action api.razorpay.com; font-src 'self' use.fontawesome.com cdnjs.cloudflare.com maxcdn.bootstrapcdn.com storage.googleapis.com rsms.me *.cltpstatic.com fonts.gstatic.com fontlibrary.org; img-src data: https://*; manifest-src 'self' fastui.cltpstatic.com; media-src 'self' fastui.cltpstatic.com; object-src 'none'; base-uri 'self'; worker-src 'self'; frame-ancestors 'self'; report-uri https://csp-flkt.domdog.io/report-uri/flipkart.com/2/1-2;