Pragma: no-cache

Location: https://sfa.senate.ca.gov/

Cache-Control: no-cache

Age: 0

Date: Thu, 01 Aug 2024 18:06:57 GMT

Etag: "1722535617-gzip"

Vary: X-Bin,Accept-Encoding,Cookie

X-Ttl: 604800

Server: Apache

Expires: Sun, 19 Nov 1978 05:00:00 GMT

X-Grace: 3600

X-Varnish: 22968996

From-Origin: same

X-Cacheable: YES

Content-Type: text/html; charset=UTF-8

X-Cache-Hits: 0

X-Webkit-Csp: default-src https: data: 'unsafe-inline' 'unsafe-eval' blob: www.youtube.com www.googletagmanager.com; script-src 'unsafe-eval' 'unsafe-inline' 'self' google.com www.googletagmanager.com www.google.com www.gstatic.com cdnjs.cloudflare.com cdn.jsdelivr.net unpkg.com ssl.p.jwpcdn.com www.googletagmanager.com www.google-analytics.com polyfill.io leganaiwebp2.calegis.net ajax.googleapis.com ssl.p.jwpcdn.com; style-src 'unsafe-inline' *; img-src 'self' data: https:; media-src 'self' blob: data: https: stream.assembly.ca.gov stream.assembly.ca.gov:1935 stream.senate.ca.gov stream.senate.ca.gov:1935; frame-src https: *.youtu.be *.youtube.com youtu.be; frame-ancestors *.senate.ca.gov *.assembly.ca.gov *.calegis.net; child-src 'self' blob: www.google.com www.gstatic.com www.youtube.com player.vimeo.com ssl.p.jwpcdn.com; font-src 'self' fonts.gstatic.com themes.googleusercontent.com data: *.assembly.ca.gov *.senate.ca.gov; report-uri /report-csp-violation; upgrade-insecure-requests

Accept-Ranges: bytes

Cache-Control: max-age=86400, public

Last-Modified: Thu, 01 Aug 2024 18:06:57 GMT

X-Adv-Varnish: Cache-enabled

Feature-Policy:

Referrer-Policy: no-referrer-when-downgrade

X-Frame-Options: SAMEORIGIN

X-Varnish-Cache: MISS

Content-Language: en

X-Xss-Protection: 1; mode=block

X-Content-Type-Options: nosniff

Content-Security-Policy: default-src https: data: 'unsafe-inline' 'unsafe-eval' blob: www.youtube.com www.googletagmanager.com; script-src 'unsafe-eval' 'unsafe-inline' 'self' google.com www.googletagmanager.com www.google.com www.gstatic.com cdnjs.cloudflare.com cdn.jsdelivr.net unpkg.com ssl.p.jwpcdn.com www.googletagmanager.com www.google-analytics.com polyfill.io leganaiwebp2.calegis.net ajax.googleapis.com ssl.p.jwpcdn.com; style-src 'unsafe-inline' *; img-src 'self' data: https:; media-src 'self' blob: data: https: stream.assembly.ca.gov stream.assembly.ca.gov:1935 stream.senate.ca.gov stream.senate.ca.gov:1935; frame-src https: *.youtu.be *.youtube.com youtu.be; frame-ancestors *.senate.ca.gov *.assembly.ca.gov *.calegis.net; child-src 'self' blob: www.google.com www.gstatic.com www.youtube.com player.vimeo.com ssl.p.jwpcdn.com; font-src 'self' fonts.gstatic.com themes.googleusercontent.com data: *.assembly.ca.gov *.senate.ca.gov; report-uri /report-csp-violation; upgrade-insecure-requests

Strict-Transport-Security: max-age=31536000; includeSubDomains

X-Content-Security-Policy: default-src https: data: 'unsafe-inline' 'unsafe-eval' blob: www.youtube.com www.googletagmanager.com; script-src 'unsafe-eval' 'unsafe-inline' 'self' google.com www.googletagmanager.com www.google.com www.gstatic.com cdnjs.cloudflare.com cdn.jsdelivr.net unpkg.com ssl.p.jwpcdn.com www.googletagmanager.com www.google-analytics.com polyfill.io leganaiwebp2.calegis.net ajax.googleapis.com ssl.p.jwpcdn.com; style-src 'unsafe-inline' *; img-src 'self' data: https:; media-src 'self' blob: data: https: stream.assembly.ca.gov stream.assembly.ca.gov:1935 stream.senate.ca.gov stream.senate.ca.gov:1935; frame-src https: *.youtu.be *.youtube.com youtu.be; frame-ancestors *.senate.ca.gov *.assembly.ca.gov *.calegis.net; child-src 'self' blob: www.google.com www.gstatic.com www.youtube.com player.vimeo.com ssl.p.jwpcdn.com; font-src 'self' fonts.gstatic.com themes.googleusercontent.com data: *.assembly.ca.gov *.senate.ca.gov; report-uri /report-csp-violation; upgrade-insecure-requests