HTTP/1.1 200 Set-Cookie: dtCookie=v_4_srv_38_sn_9FEBC3BE31C39D1C683F809A10BC452A_perc_100000_ol_0_mul_1_app-3Ab162fb553db6a5a0_1_rcs-3Acss_0; Path=/; Domain=.glossybox.co.uk; secureServer-Timing: dtRpid;desc="-334511916" X-OneAgent-JS-Injection: trueCache-Control: private, max-age=0, no-cache, no-store, must-revalidatePragma: no-cacheExpires: Thu, 01 Jan 1970 00:00:00 GMTX-Frame-Options: SAMEORIGINX-Content-Type-Options: nosniffSet-Cookie: JSESSIONID=103FDF7487BFAB1B2F10F492A1DF800F; Path=/; Secure; HttpOnlySet-Cookie: chumewe_user=22d6f994-0637-4ded-98c7-186c12f78f64; Version=1; Domain=.glossybox.co.uk; Path=/; Max-Age=157784630; Expires=Sun, 28-Jun-2026 09:53:27 GMT; SameSite=None; SecureSet-Cookie: chumewe_sess=f41cdedf-2818-49f6-9aea-d72558b59a18; Version=1; Domain=.glossybox.co.uk; Path=/; Max-Age=14400; Expires=Mon, 28-Jun-2021 08:49:37 GMT; SameSite=None; SecureSet-Cookie: locale_V6=en_GB; Version=1; Domain=.glossybox.co.uk; Path=/; Max-Age=31556926; Expires=Tue, 28-Jun-2022 10:38:23 GMT; SameSite=None; SecureSet-Cookie: csrf_token=08410330868496960308; Version=1; Path=/; SameSite=None; HttpOnly; SecureContent-Security-Policy: child-src 'self' https://www.googletagmanager.com https://*.liveperson.net https://cdn.appdynamics.com https://*.lpsnmedia.net https://www.facebook.com https://connect.facebook.net https://*.google.com https://widget.trustpilot.com https://*.doubleclick.net https://*.recaptcha.net https://plugin.monotote.com https://www.youtube.com https://www.zenaps.com https://*.akamaihd.net https://*.translate.naver.net https://ln-rules.rewardstyle.com https://tpc.googlesyndication.com https://tr.snapchat.com https://www.shoplooks.com; connect-src 'self' https://*.thcdn.com https://*.ingest.sentry.io https://*.pingdom.net https://*.doubleclick.net https://*.google-analytics.com https://capture.trackjs.com https://fp.zenaps.com https://www.facebook.com https://*.google.com https://*.thehut.net https://services.postcodeanywhere.co.uk https://*.akamaihd.net https://*.sciencebehindecommerce.com https://*.googleapis.com https://*.trustpilot.com https://*.pinterest.com https://*.doubleclick.net https://*.bing.com https://connect.facebook.net https://*.baidu.com https://*.parcellab.com https://ct.pinterest.com; font-src 'self' data: https://*.thcdn.com https://fp.zenaps.com https://cdnjs.cloudflare.com https://fonts.gstatic.com https://fonts.googleapis.com; form-action 'self' https://www.facebook.com https://connect.facebook.net https://www.glossybox.co.uk https://m.glossybox.co.uk https://checkout.glossybox.co.uk https://tr.snapchat.com; img-src 'self' data: https://*.thcdn.com https://col.eum-appdynamics.com https://usage.trackjs.com https://*.lpsnmedia.net https://*.doubleclick.net https://www.google-analytics.com https://*.google.com https://cx.atdmt.com https://www.zenaps.com https:; media-src 'self' https://*.thcdn.com https://*.lpsnmedia.net; object-src 'self' https://*.thcdn.com https://www.youtube.com; report-uri https://csp.thehut.net/cspReport.txt; script-src 'self' 'unsafe-eval' 'unsafe-inline' data: https://*.thcdn.com https://*.thehut.net https://rum-static.pingdom.net https://*.liveperson.net https://*.lpsnmedia.net https://*.doubleclick.net https://static.cdn-apple.com https://*.liveperson.com https://www.googletagmanager.com https://cdnjs.cloudflare.com https://fp.zenaps.com https://www.youtube.com https://www.google-analytics.com https://*.google.com https://connect.facebook.net https://bat.bing.com https://widget.trustpilot.com https://s.ytimg.com https://www.googletagservices.com https://*.googleapis.com https://ssl.trustpilot.com https://www.facebook.com https://www.googleadservices.com https://*.gstatic.com https://*.gstatic.cn https://www.dwin1.com https://cdn.trackjs.com https://seal.digicert.com https://static.ads-twitter.com https://*.twitter.com https://plugin.monotote.com https://*.recaptcha.net https://*.akamaihd.net https://smct.co https://*.sciencebehindecommerce.com https://*.tribalfusion.com https://*.microsofttranslator.com https://google.com https://*.trustpilot.com https://*.translate.naver.net https://*.doubleclick.net https://ln-rules.rewardstyle.com https://*.google-analytics.com https://twitter.com https://tpc.googlesyndication.com https://*.baidu.com https://sc-static.net https://*.google.co.uk https://google.co.uk https://*.shoplooks.com https://slooks.top https://slooks.me https://s.pinimg.com; style-src 'self' 'unsafe-inline' https://*.thcdn.com https://*.google.com https://*.googleapis.com https://fp.zenaps.com https://cdnjs.cloudflare.com https://*.googleapis.com https://*.translate.naver.net https://*.microsofttranslator.com https://cdn.parcellab.com https://www.shoplooks.com https://static.shoplooks.com; upgrade-insecure-requests; report-to report-endpointReferrer-Policy: unsafe-urlX-XSS-Protection: 1; mode=block; report=/xssProtection.txtStrict-Transport-Security: max-age=31536000; includeSubDomains; preloadReport-To: {"group":"report-endpoint","max_age":86400,"endpoints":[{"url":"https://csp.thehut.net/cspReport.txt","priority":1,"weight":1}],"include_subdomains":true}vary: accept-encodingContent-Encoding: gzipContent-Type: text/html;charset=UTF-8Transfer-Encoding: chunkedDate: Mon, 28 Jun 2021 04:49:36 GMTSet-Cookie: NSC_mc_wtsw_efgbvmu_xfctsw_8010_D=ffffffff09021f2945525d5f4f58455e445a4a42297a;expires=Mon, 28-Jun-2021 07:49:37 GMT;path=/;secure;httponly