HTTP/1.0 302 Found
Location: https://www.roche.com
Server: BigIP
Connection: Keep-Alive
Content-Length: 0
HTTP/2 200
date: Tue, 04 Jan 2022 08:51:22 GMT
content-type: text/html;charset=UTF-8
cf-ray: 6c83397dfea8536a-FRA
cache-control: public, max-age=120, stale-if-error=3600
expires: Tue, 04 Jan 2022 08:53:22 GMT
last-modified: Tue, 04 Jan 2022 07:00:36 GMT
strict-transport-security: max-age=3600;
vary: Accept-Encoding
cf-cache-status: REVALIDATED
content-security-policy: object-src 'self'; report-uri https://ayba8dhs.uriports.com/reports/report; report-to default
content-security-policy-report-only: default-src 'self' *.roche.com *.roche.net *.gene.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.roche.com *.roche.net *.gene.com cdn.walkme.com apis.google.com tpc.googlesyndication.com api.html5media.info workdevapp.com cdn-js.net gdata.youtube.com twitter.com geolocation.onetrust.com api.flickr.com graph.facebook.com sharecdn.social9.com maps.googleapis.com use.typekit.com munchkin.marketo.net img.en25.com w.likebtn.com cdn.mathjax.org sadmin.brightcove.com cdnjs.cloudflare.com releases.flowplayer.org script.crazyegg.com wi.likebtn.com pepperglobal.com analytics.twitter.com cdn.blueconic.net connect.facebook.net fullstory.com script.hotjar.com gnntch.blueconic.net rules.quantcount.com secure.quantserve.com static.hotjar.com www.youtube.com www.googletagmanager.com www.google-analytics.com google-analytics.com *.gstatic.com static.ads-twitter.com sjs.bizographics.com *.linkedin.com www.google.com w.soundcloud.com s.ytimg.com *.cloudflareaccess.com *.salesforceliveagent.com https://*.roche.com:8080 https://cdnjs.org https://service.force.com/* cdn.cookielaw.org static.cloudflareinsights.com googleads.g.doubleclick.net 7232514.collect.igodigital.com; style-src * 'self' 'unsafe-inline'; img-src * 'self' data:; font-src * 'self' data:; connect-src * 'self'; media-src * 'self' data:; object-src 'self'; child-src 'self' *.roche.com *.roche.net *.gene.com *.facebook.net qpcr.probefinder.com *.force.com *.hotjar.com www.facebook.com www.google.com www.googletagmanager.com www.youtube.com; frame-src 'self' *.roche.com *.roche.net *.gene.com www.youtube.com sites.google.com *.cloudfront.net *.facebook.net *.arcot.com live.sagepay.com player.vimeo.com tpc.googlesyndication.com players.brightcove.net qpcr.probefinder.com *.eloqua.com *.hotjar.com *.soundcloud.com *.facebook.com *.google.com *.googletagmanager.com *.youtube-nocookie.com *.youtube.com *.mendeley.com *.force.com https://cdn.walkme.com/*; worker-src 'self' *.roche.com *.roche.net *.gene.com; frame-ancestors 'self' *.roche.com *.roche.net *.gene.com datastudio.google.com sites.google.com content.bioclinicien.fr connect.facebook.net www.facebook.com s1691.t.eloqua.com *.cloudflareworkers.com; form-action 'self' *.roche.com *.roche.net *.gene.com content.bioclinicien.fr connect.facebook.net www.facebook.com s1691.t.eloqua.com; base-uri 'self' *.roche.com *.roche.net *.gene.com *.secure.roche.com; report-uri https://ayba8dhs.uriports.com/reports/report; report-to default
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
expect-staple: max-age=3600; includeSubDomains
feature-policy-report-only: geolocation 'none'; camera 'none'; fullscreen *; payment 'self'
nel: {"report_to":"default","max_age":3600,"include_subdomains":true,"failure_fraction": 0.15}
pragma: no-cache
referrer-policy: strict-origin-when-cross-origin
report-to: {"group":"default","max_age":3600,"endpoints":[{"url":"https://ayba8dhs.uriports.com/reports"}],"include_subdomains":true}
x-frame-options: SAMEORIGIN
x-magnolia-registration: Registered
x-xss-protection: 1; mode=block
set-cookie: __cfruid=7cd8bf9db47a41d9066e1ba628361c47b7cead05-1641286282; path=/; domain=.www.roche.com; HttpOnly; Secure; SameSite=None
server: cloudflare
|