| demo.app.spendesk.com/ |  172.67.214.148 | 301 Moved Permanently | 0 B |
IP172.67.214.148:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: demo.app.spendesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Wed, 11 Dec 2024 21:24:24 GMT
content-length: 0
location: /app
content-security-policy: frame-ancestors 'self' https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com chrome-extension://dipeehgoehnglgojdgfmndjemdfepkeb https://*.marqeta.com https://app.storyblok.com https://www.spendesk.com
content-security-policy-report-only: connect-src 'self' https://demo.api.spendesk.com https://demo.spendesk.com https://logs.browser-intake-datadoghq.eu https://rum.browser-intake-datadoghq.eu https://browser-intake-datadoghq.eu https://api.segment.io https://cdn.segment.com https://api.amplitude.com https://api.storyblok.com https://api-js.mixpanel.com https://api-iam.intercom.io https://d3r43gyd9zmfep.cloudfront.net wss://nexus-websocket-a.intercom.io https://*.fullstory.com https://bat.bing.com https://in.hotjar.com https://*.trychameleon.com https://forms.hubspot.com https://eligibility.wootric.com https://stats.g.doubleclick.net https://www.google-analytics.com https://*.google-analytics.com https://*.spendesk.tools https://*.spendesk.com https://spx-staging-dev-i18n.s3.eu-west-1.amazonaws.com https://spx-production-i18n.s3.eu-west-1.amazonaws.com https://app.satismeter.com https://accounts.google.com https://px.ads.linkedin.com https://widgets.marqeta.com 'report-sample';script-src 'self' https://*.marqeta.com https://js.intercomcdn.com https://*.google-analytics.com https://cdn.wootric.com https://fast.trychameleon.com https://fastly.trychameleon.com https://widget.intercom.io https://cdn.mxpnl.com https://cdn.segment.com https://cdn.amplitude.com https://tracking.g2crowd.com https://scout-cdn.salesloft.com https://serve.albacross.com https://js.hsforms.net https://d3r43gyd9zmfep.cloudfront.net https://cdn-3.convertexperiments.com https://www.googleoptimize.com https://apis.google.com https://www.google.com https://accounts.google.com https://fullstory.com https://*.fullstory.com https://analytics.twitter.com https://bat.bing.com https://cdn.heapanalytics.com https://connect.facebook.net https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-banner.com https://*.hs-scripts.com https://js.hsleadflows.net https://script.hotjar.com https://snap.licdn.com https://static.ads-twitter.com https://static.hotjar.com https://www.googleadservices.com https://*.googletagmanager.com https://unpkg.com https://*.spendesk.com https://app.satismeter.com 'nonce-UwcOkUXGWsek0NcwLD6Sc' 'report-sample';worker-src 'self' blob:;frame-ancestors 'self' https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com chrome-extension://dipeehgoehnglgojdgfmndjemdfepkeb https://*.marqeta.com https://app.storyblok.com https://www.spendesk.com;report-uri https://www.spendesk.com/security/report/csp;block-all-mixed-content
referrer-policy: origin-when-cross-origin
report-to: {"group":"csp-endpoint","max_age":63072000,"endpoints":[{"url":"https://www.spendesk.com/security/report/csp"}]}
x-dns-prefetch-control: off
x-frame-options: sameorigin
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8f088a952a6bb4fa-OSL
X-Firefox-Spdy: h2
|
|
| demo.app.spendesk.com/static/img/logo-loading.gif | 172.67.214.148 | 200 OK | 131 kB |
URL demo.app.spendesk.com/static/img/logo-loading.gif IP172.67.214.148:0
File typeGIF image data, version 89a, 200 x 163 Size131 kB (130586 bytes) Hashdcd4d19677cb6a4727c224d15a27c4d7 0ffed167f856e89916dae772bbe9d74d03a0ac9b ee605f53b63b1312cbfcab4cfbe20c1b5c62eaf29f26928f16ec6af40d54bde6
GET /static/img/logo-loading.gif HTTP/1.1
Host: demo.app.spendesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://demo.app.spendesk.com/app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Dec 2024 21:24:25 GMT
content-type: image/gif
content-length: 130586
cache-control: no-cache
content-security-policy: frame-ancestors 'self' https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com chrome-extension://dipeehgoehnglgojdgfmndjemdfepkeb https://*.marqeta.com https://app.storyblok.com https://www.spendesk.com
content-security-policy-report-only: connect-src 'self' https://demo.api.spendesk.com https://demo.spendesk.com https://logs.browser-intake-datadoghq.eu https://rum.browser-intake-datadoghq.eu https://browser-intake-datadoghq.eu https://api.segment.io https://cdn.segment.com https://api.amplitude.com https://api.storyblok.com https://api-js.mixpanel.com https://api-iam.intercom.io https://d3r43gyd9zmfep.cloudfront.net wss://nexus-websocket-a.intercom.io https://*.fullstory.com https://bat.bing.com https://in.hotjar.com https://*.trychameleon.com https://forms.hubspot.com https://eligibility.wootric.com https://stats.g.doubleclick.net https://www.google-analytics.com https://*.google-analytics.com https://*.spendesk.tools https://*.spendesk.com https://spx-staging-dev-i18n.s3.eu-west-1.amazonaws.com https://spx-production-i18n.s3.eu-west-1.amazonaws.com https://app.satismeter.com https://accounts.google.com https://px.ads.linkedin.com https://widgets.marqeta.com 'report-sample';script-src 'self' https://*.marqeta.com https://js.intercomcdn.com https://*.google-analytics.com https://cdn.wootric.com https://fast.trychameleon.com https://fastly.trychameleon.com https://widget.intercom.io https://cdn.mxpnl.com https://cdn.segment.com https://cdn.amplitude.com https://tracking.g2crowd.com https://scout-cdn.salesloft.com https://serve.albacross.com https://js.hsforms.net https://d3r43gyd9zmfep.cloudfront.net https://cdn-3.convertexperiments.com https://www.googleoptimize.com https://apis.google.com https://www.google.com https://accounts.google.com https://fullstory.com https://*.fullstory.com https://analytics.twitter.com https://bat.bing.com https://cdn.heapanalytics.com https://connect.facebook.net https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-banner.com https://*.hs-scripts.com https://js.hsleadflows.net https://script.hotjar.com https://snap.licdn.com https://static.ads-twitter.com https://static.hotjar.com https://www.googleadservices.com https://*.googletagmanager.com https://unpkg.com https://*.spendesk.com https://app.satismeter.com 'nonce-T2iCNm8rXWDH6Rvux8FHV' 'report-sample';worker-src 'self' blob:;frame-ancestors 'self' https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com chrome-extension://dipeehgoehnglgojdgfmndjemdfepkeb https://*.marqeta.com https://app.storyblok.com https://www.spendesk.com;report-uri https://www.spendesk.com/security/report/csp;block-all-mixed-content
referrer-policy: origin-when-cross-origin
report-to: {"group":"csp-endpoint","max_age":63072000,"endpoints":[{"url":"https://www.spendesk.com/security/report/csp"}]}
x-dns-prefetch-control: off
x-frame-options: sameorigin
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8f088a989edcb4fa-OSL
X-Firefox-Spdy: h2
|
|
| GET demo.app.spendesk.com/static/img/favicon.png | 172.67.214.148 | 200 OK | 714 B |
URL GET HTTP/2demo.app.spendesk.com/static/img/favicon.png IP172.67.214.148:443
Requested byhttps://demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp CertificateIssuerGoogle Trust Services Subjectdemo.app.spendesk.com FingerprintFE:33:11:0A:E3:94:37:EA:6F:46:9F:23:65:54:E2:08:CC:3C:EA:AC ValidityThu, 31 Oct 2024 00:57:24 GMT - Wed, 29 Jan 2025 00:57:23 GMT
File typePNG image data, 32 x 32, 8-bit colormap, non-interlaced Hash6c8339417c93da1acf19051f6e52cf1e 613f725621747a413e51ddd0dcd4390997064939 669c73569932e8f36cd0f185b4813d050108a5b9065e17435365410a43dc59d7
GET /static/img/favicon.png HTTP/1.1
Host: demo.app.spendesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://demo.app.spendesk.com/app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Dec 2024 21:24:25 GMT
content-type: image/png
content-length: 714
cache-control: no-cache
content-security-policy: frame-ancestors 'self' https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com chrome-extension://dipeehgoehnglgojdgfmndjemdfepkeb https://*.marqeta.com https://app.storyblok.com https://www.spendesk.com
content-security-policy-report-only: connect-src 'self' https://demo.api.spendesk.com https://demo.spendesk.com https://logs.browser-intake-datadoghq.eu https://rum.browser-intake-datadoghq.eu https://browser-intake-datadoghq.eu https://api.segment.io https://cdn.segment.com https://api.amplitude.com https://api.storyblok.com https://api-js.mixpanel.com https://api-iam.intercom.io https://d3r43gyd9zmfep.cloudfront.net wss://nexus-websocket-a.intercom.io https://*.fullstory.com https://bat.bing.com https://in.hotjar.com https://*.trychameleon.com https://forms.hubspot.com https://eligibility.wootric.com https://stats.g.doubleclick.net https://www.google-analytics.com https://*.google-analytics.com https://*.spendesk.tools https://*.spendesk.com https://spx-staging-dev-i18n.s3.eu-west-1.amazonaws.com https://spx-production-i18n.s3.eu-west-1.amazonaws.com https://app.satismeter.com https://accounts.google.com https://px.ads.linkedin.com https://widgets.marqeta.com 'report-sample';script-src 'self' https://*.marqeta.com https://js.intercomcdn.com https://*.google-analytics.com https://cdn.wootric.com https://fast.trychameleon.com https://fastly.trychameleon.com https://widget.intercom.io https://cdn.mxpnl.com https://cdn.segment.com https://cdn.amplitude.com https://tracking.g2crowd.com https://scout-cdn.salesloft.com https://serve.albacross.com https://js.hsforms.net https://d3r43gyd9zmfep.cloudfront.net https://cdn-3.convertexperiments.com https://www.googleoptimize.com https://apis.google.com https://www.google.com https://accounts.google.com https://fullstory.com https://*.fullstory.com https://analytics.twitter.com https://bat.bing.com https://cdn.heapanalytics.com https://connect.facebook.net https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-banner.com https://*.hs-scripts.com https://js.hsleadflows.net https://script.hotjar.com https://snap.licdn.com https://static.ads-twitter.com https://static.hotjar.com https://www.googleadservices.com https://*.googletagmanager.com https://unpkg.com https://*.spendesk.com https://app.satismeter.com 'nonce-NHjKtM6cs5TbNDgEVgvpU' 'report-sample';worker-src 'self' blob:;frame-ancestors 'self' https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com chrome-extension://dipeehgoehnglgojdgfmndjemdfepkeb https://*.marqeta.com https://app.storyblok.com https://www.spendesk.com;report-uri https://www.spendesk.com/security/report/csp;block-all-mixed-content
referrer-policy: origin-when-cross-origin
report-to: {"group":"csp-endpoint","max_age":63072000,"endpoints":[{"url":"https://www.spendesk.com/security/report/csp"}]}
x-dns-prefetch-control: off
x-frame-options: sameorigin
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8f088a9d6da0b4fa-OSL
X-Firefox-Spdy: h2
|
|
| GET demo.app.spendesk.com/static/img/apple-touch-icon.png | 172.67.214.148 | 200 OK | 1.8 kB |
URL GET HTTP/2demo.app.spendesk.com/static/img/apple-touch-icon.png IP172.67.214.148:443
Requested byhttps://demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp CertificateIssuerGoogle Trust Services Subjectdemo.app.spendesk.com FingerprintFE:33:11:0A:E3:94:37:EA:6F:46:9F:23:65:54:E2:08:CC:3C:EA:AC ValidityThu, 31 Oct 2024 00:57:24 GMT - Wed, 29 Jan 2025 00:57:23 GMT
File typePNG image data, 128 x 128, 8-bit colormap, non-interlaced Hash98e064e8b2392e0ce7bef89f43591102 a69df76c84e66d65766eb465bba0fb5da885a566 0783936faf318ad7f85f467c3e798df1ffacdfb70ef28dc644287082a9a39ac0
GET /static/img/apple-touch-icon.png HTTP/1.1
Host: demo.app.spendesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://demo.app.spendesk.com/app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Dec 2024 21:24:26 GMT
content-type: image/png
content-length: 1759
cache-control: no-cache
content-security-policy: frame-ancestors 'self' https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com chrome-extension://dipeehgoehnglgojdgfmndjemdfepkeb https://*.marqeta.com https://app.storyblok.com https://www.spendesk.com
content-security-policy-report-only: connect-src 'self' https://demo.api.spendesk.com https://demo.spendesk.com https://logs.browser-intake-datadoghq.eu https://rum.browser-intake-datadoghq.eu https://browser-intake-datadoghq.eu https://api.segment.io https://cdn.segment.com https://api.amplitude.com https://api.storyblok.com https://api-js.mixpanel.com https://api-iam.intercom.io https://d3r43gyd9zmfep.cloudfront.net wss://nexus-websocket-a.intercom.io https://*.fullstory.com https://bat.bing.com https://in.hotjar.com https://*.trychameleon.com https://forms.hubspot.com https://eligibility.wootric.com https://stats.g.doubleclick.net https://www.google-analytics.com https://*.google-analytics.com https://*.spendesk.tools https://*.spendesk.com https://spx-staging-dev-i18n.s3.eu-west-1.amazonaws.com https://spx-production-i18n.s3.eu-west-1.amazonaws.com https://app.satismeter.com https://accounts.google.com https://px.ads.linkedin.com https://widgets.marqeta.com 'report-sample';script-src 'self' https://*.marqeta.com https://js.intercomcdn.com https://*.google-analytics.com https://cdn.wootric.com https://fast.trychameleon.com https://fastly.trychameleon.com https://widget.intercom.io https://cdn.mxpnl.com https://cdn.segment.com https://cdn.amplitude.com https://tracking.g2crowd.com https://scout-cdn.salesloft.com https://serve.albacross.com https://js.hsforms.net https://d3r43gyd9zmfep.cloudfront.net https://cdn-3.convertexperiments.com https://www.googleoptimize.com https://apis.google.com https://www.google.com https://accounts.google.com https://fullstory.com https://*.fullstory.com https://analytics.twitter.com https://bat.bing.com https://cdn.heapanalytics.com https://connect.facebook.net https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-banner.com https://*.hs-scripts.com https://js.hsleadflows.net https://script.hotjar.com https://snap.licdn.com https://static.ads-twitter.com https://static.hotjar.com https://www.googleadservices.com https://*.googletagmanager.com https://unpkg.com https://*.spendesk.com https://app.satismeter.com 'nonce-aUEXlettmubCsBTxfCY7B' 'report-sample';worker-src 'self' blob:;frame-ancestors 'self' https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com chrome-extension://dipeehgoehnglgojdgfmndjemdfepkeb https://*.marqeta.com https://app.storyblok.com https://www.spendesk.com;report-uri https://www.spendesk.com/security/report/csp;block-all-mixed-content
referrer-policy: origin-when-cross-origin
report-to: {"group":"csp-endpoint","max_age":63072000,"endpoints":[{"url":"https://www.spendesk.com/security/report/csp"}]}
x-dns-prefetch-control: off
x-frame-options: sameorigin
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8f088a9d5d9db4fa-OSL
X-Firefox-Spdy: h2
|
|
| demo.app.spendesk.com/static/js/141.73fac96e.chunk.js | 172.67.214.148 | 200 OK | 14 kB |
URL demo.app.spendesk.com/static/js/141.73fac96e.chunk.js IP172.67.214.148:0
File typeJavaScript source, ASCII text, with very long lines (10803) Hash0de68c4a4eda3c83068eeb8595c9bcc6 63672d2071503e5b1578f83ff725df3e81656c74 8f2bf9af531208365f3791ccac820cebd2b2815dae4f6f05eb9deb4941af1cd2
GET /static/js/141.73fac96e.chunk.js HTTP/1.1
Host: demo.app.spendesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://demo.app.spendesk.com/app
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Dec 2024 21:24:26 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
content-security-policy: frame-ancestors 'self' https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com chrome-extension://dipeehgoehnglgojdgfmndjemdfepkeb https://*.marqeta.com https://app.storyblok.com https://www.spendesk.com
content-security-policy-report-only: connect-src 'self' https://demo.api.spendesk.com https://demo.spendesk.com https://logs.browser-intake-datadoghq.eu https://rum.browser-intake-datadoghq.eu https://browser-intake-datadoghq.eu https://api.segment.io https://cdn.segment.com https://api.amplitude.com https://api.storyblok.com https://api-js.mixpanel.com https://api-iam.intercom.io https://d3r43gyd9zmfep.cloudfront.net wss://nexus-websocket-a.intercom.io https://*.fullstory.com https://bat.bing.com https://in.hotjar.com https://*.trychameleon.com https://forms.hubspot.com https://eligibility.wootric.com https://stats.g.doubleclick.net https://www.google-analytics.com https://*.google-analytics.com https://*.spendesk.tools https://*.spendesk.com https://spx-staging-dev-i18n.s3.eu-west-1.amazonaws.com https://spx-production-i18n.s3.eu-west-1.amazonaws.com https://app.satismeter.com https://accounts.google.com https://px.ads.linkedin.com https://widgets.marqeta.com 'report-sample';script-src 'self' https://*.marqeta.com https://js.intercomcdn.com https://*.google-analytics.com https://cdn.wootric.com https://fast.trychameleon.com https://fastly.trychameleon.com https://widget.intercom.io https://cdn.mxpnl.com https://cdn.segment.com https://cdn.amplitude.com https://tracking.g2crowd.com https://scout-cdn.salesloft.com https://serve.albacross.com https://js.hsforms.net https://d3r43gyd9zmfep.cloudfront.net https://cdn-3.convertexperiments.com https://www.googleoptimize.com https://apis.google.com https://www.google.com https://accounts.google.com https://fullstory.com https://*.fullstory.com https://analytics.twitter.com https://bat.bing.com https://cdn.heapanalytics.com https://connect.facebook.net https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-banner.com https://*.hs-scripts.com https://js.hsleadflows.net https://script.hotjar.com https://snap.licdn.com https://static.ads-twitter.com https://static.hotjar.com https://www.googleadservices.com https://*.googletagmanager.com https://unpkg.com https://*.spendesk.com https://app.satismeter.com 'nonce-N9eAH36udBsHWAe_CdbkL' 'report-sample';worker-src 'self' blob:;frame-ancestors 'self' https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com chrome-extension://dipeehgoehnglgojdgfmndjemdfepkeb https://*.marqeta.com https://app.storyblok.com https://www.spendesk.com;report-uri https://www.spendesk.com/security/report/csp;block-all-mixed-content
referrer-policy: origin-when-cross-origin
report-to: {"group":"csp-endpoint","max_age":63072000,"endpoints":[{"url":"https://www.spendesk.com/security/report/csp"}]}
x-dns-prefetch-control: off
x-frame-options: sameorigin
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8f088aa2cdd7b4fa-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| demo.app.spendesk.com/static/css/app.3ee32be7.css | 172.67.214.148 | 200 OK | 45 kB |
URL demo.app.spendesk.com/static/css/app.3ee32be7.css IP172.67.214.148:0
File typeUnicode text, UTF-8 text, with very long lines (65534), with no line terminators Hash8003c6d93f5f4b202540d060e489cce5 2f03390333554dfef8a8f8561c6748f799533339 52f52c03b2e13f911c4599590f9cddf92bd086b8201b00bdcab5f4d6273fa35e
GET /static/css/app.3ee32be7.css HTTP/1.1
Host: demo.app.spendesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://demo.app.spendesk.com/app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Dec 2024 21:24:25 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=31536000, immutable
content-security-policy: frame-ancestors 'self' https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com chrome-extension://dipeehgoehnglgojdgfmndjemdfepkeb https://*.marqeta.com https://app.storyblok.com https://www.spendesk.com
content-security-policy-report-only: connect-src 'self' https://demo.api.spendesk.com https://demo.spendesk.com https://logs.browser-intake-datadoghq.eu https://rum.browser-intake-datadoghq.eu https://browser-intake-datadoghq.eu https://api.segment.io https://cdn.segment.com https://api.amplitude.com https://api.storyblok.com https://api-js.mixpanel.com https://api-iam.intercom.io https://d3r43gyd9zmfep.cloudfront.net wss://nexus-websocket-a.intercom.io https://*.fullstory.com https://bat.bing.com https://in.hotjar.com https://*.trychameleon.com https://forms.hubspot.com https://eligibility.wootric.com https://stats.g.doubleclick.net https://www.google-analytics.com https://*.google-analytics.com https://*.spendesk.tools https://*.spendesk.com https://spx-staging-dev-i18n.s3.eu-west-1.amazonaws.com https://spx-production-i18n.s3.eu-west-1.amazonaws.com https://app.satismeter.com https://accounts.google.com https://px.ads.linkedin.com https://widgets.marqeta.com 'report-sample';script-src 'self' https://*.marqeta.com https://js.intercomcdn.com https://*.google-analytics.com https://cdn.wootric.com https://fast.trychameleon.com https://fastly.trychameleon.com https://widget.intercom.io https://cdn.mxpnl.com https://cdn.segment.com https://cdn.amplitude.com https://tracking.g2crowd.com https://scout-cdn.salesloft.com https://serve.albacross.com https://js.hsforms.net https://d3r43gyd9zmfep.cloudfront.net https://cdn-3.convertexperiments.com https://www.googleoptimize.com https://apis.google.com https://www.google.com https://accounts.google.com https://fullstory.com https://*.fullstory.com https://analytics.twitter.com https://bat.bing.com https://cdn.heapanalytics.com https://connect.facebook.net https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-banner.com https://*.hs-scripts.com https://js.hsleadflows.net https://script.hotjar.com https://snap.licdn.com https://static.ads-twitter.com https://static.hotjar.com https://www.googleadservices.com https://*.googletagmanager.com https://unpkg.com https://*.spendesk.com https://app.satismeter.com 'nonce-HApq4X7wz772Z4e1JGngb' 'report-sample';worker-src 'self' blob:;frame-ancestors 'self' https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com chrome-extension://dipeehgoehnglgojdgfmndjemdfepkeb https://*.marqeta.com https://app.storyblok.com https://www.spendesk.com;report-uri https://www.spendesk.com/security/report/csp;block-all-mixed-content
referrer-policy: origin-when-cross-origin
report-to: {"group":"csp-endpoint","max_age":63072000,"endpoints":[{"url":"https://www.spendesk.com/security/report/csp"}]}
x-dns-prefetch-control: off
x-frame-options: sameorigin
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8f088a988ed9b4fa-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| demo.app.spendesk.com/static/js/vendors.c4cf0226.js | 172.67.214.148 | 200 OK | 564 kB |
URL demo.app.spendesk.com/static/js/vendors.c4cf0226.js IP172.67.214.148:0
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size564 kB (563997 bytes) Hashc4e14e63201b00b73964aecfa83f7bbf ca52e55c35b6f4aa0913570ce6ebd764b65a0e99 8118f1b7878740f809a4305d56b874f224a8953063793a86725e6c78bdbb551f
GET /static/js/vendors.c4cf0226.js HTTP/1.1
Host: demo.app.spendesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://demo.app.spendesk.com/app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Dec 2024 21:24:25 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
content-security-policy: frame-ancestors 'self' https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com chrome-extension://dipeehgoehnglgojdgfmndjemdfepkeb https://*.marqeta.com https://app.storyblok.com https://www.spendesk.com
content-security-policy-report-only: connect-src 'self' https://demo.api.spendesk.com https://demo.spendesk.com https://logs.browser-intake-datadoghq.eu https://rum.browser-intake-datadoghq.eu https://browser-intake-datadoghq.eu https://api.segment.io https://cdn.segment.com https://api.amplitude.com https://api.storyblok.com https://api-js.mixpanel.com https://api-iam.intercom.io https://d3r43gyd9zmfep.cloudfront.net wss://nexus-websocket-a.intercom.io https://*.fullstory.com https://bat.bing.com https://in.hotjar.com https://*.trychameleon.com https://forms.hubspot.com https://eligibility.wootric.com https://stats.g.doubleclick.net https://www.google-analytics.com https://*.google-analytics.com https://*.spendesk.tools https://*.spendesk.com https://spx-staging-dev-i18n.s3.eu-west-1.amazonaws.com https://spx-production-i18n.s3.eu-west-1.amazonaws.com https://app.satismeter.com https://accounts.google.com https://px.ads.linkedin.com https://widgets.marqeta.com 'report-sample';script-src 'self' https://*.marqeta.com https://js.intercomcdn.com https://*.google-analytics.com https://cdn.wootric.com https://fast.trychameleon.com https://fastly.trychameleon.com https://widget.intercom.io https://cdn.mxpnl.com https://cdn.segment.com https://cdn.amplitude.com https://tracking.g2crowd.com https://scout-cdn.salesloft.com https://serve.albacross.com https://js.hsforms.net https://d3r43gyd9zmfep.cloudfront.net https://cdn-3.convertexperiments.com https://www.googleoptimize.com https://apis.google.com https://www.google.com https://accounts.google.com https://fullstory.com https://*.fullstory.com https://analytics.twitter.com https://bat.bing.com https://cdn.heapanalytics.com https://connect.facebook.net https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-banner.com https://*.hs-scripts.com https://js.hsleadflows.net https://script.hotjar.com https://snap.licdn.com https://static.ads-twitter.com https://static.hotjar.com https://www.googleadservices.com https://*.googletagmanager.com https://unpkg.com https://*.spendesk.com https://app.satismeter.com 'nonce-tfvGq9JSgWiyEkL33MjeM' 'report-sample';worker-src 'self' blob:;frame-ancestors 'self' https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com chrome-extension://dipeehgoehnglgojdgfmndjemdfepkeb https://*.marqeta.com https://app.storyblok.com https://www.spendesk.com;report-uri https://www.spendesk.com/security/report/csp;block-all-mixed-content
referrer-policy: origin-when-cross-origin
report-to: {"group":"csp-endpoint","max_age":63072000,"endpoints":[{"url":"https://www.spendesk.com/security/report/csp"}]}
x-dns-prefetch-control: off
x-frame-options: sameorigin
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8f088a988ed4b4fa-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| GET demo.app.spendesk.com/static/fonts/Inter/Inter.woff2 | 172.67.214.148 | 200 OK | 67 kB |
URL GET HTTP/2demo.app.spendesk.com/static/fonts/Inter/Inter.woff2 IP172.67.214.148:443
Requested byhttps://demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp CertificateIssuerGoogle Trust Services Subjectdemo.app.spendesk.com FingerprintFE:33:11:0A:E3:94:37:EA:6F:46:9F:23:65:54:E2:08:CC:3C:EA:AC ValidityThu, 31 Oct 2024 00:57:24 GMT - Wed, 29 Jan 2025 00:57:23 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 67364, version 3.1245 Hash7bed481bf8478abbcb25340bed8063dd 671244d1321785a2188d2fd204aced3563040b99 d178cd5f293bf26d6d4506c0e380850f07628513a47814d4a94fe0a3a21c93b6
GET /static/fonts/Inter/Inter.woff2 HTTP/1.1
Host: demo.app.spendesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp
DNT: 1
Connection: keep-alive
Cookie: spendeskDeviceUUID=ae1d273d-77ec-4d2d-a293-de2ddace1bc3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Dec 2024 21:24:27 GMT
content-type: font/woff2
content-length: 67364
cache-control: no-cache
content-security-policy: frame-ancestors 'self' https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com chrome-extension://dipeehgoehnglgojdgfmndjemdfepkeb https://*.marqeta.com https://app.storyblok.com https://www.spendesk.com
content-security-policy-report-only: connect-src 'self' https://demo.api.spendesk.com https://demo.spendesk.com https://logs.browser-intake-datadoghq.eu https://rum.browser-intake-datadoghq.eu https://browser-intake-datadoghq.eu https://api.segment.io https://cdn.segment.com https://api.amplitude.com https://api.storyblok.com https://api-js.mixpanel.com https://api-iam.intercom.io https://d3r43gyd9zmfep.cloudfront.net wss://nexus-websocket-a.intercom.io https://*.fullstory.com https://bat.bing.com https://in.hotjar.com https://*.trychameleon.com https://forms.hubspot.com https://eligibility.wootric.com https://stats.g.doubleclick.net https://www.google-analytics.com https://*.google-analytics.com https://*.spendesk.tools https://*.spendesk.com https://spx-staging-dev-i18n.s3.eu-west-1.amazonaws.com https://spx-production-i18n.s3.eu-west-1.amazonaws.com https://app.satismeter.com https://accounts.google.com https://px.ads.linkedin.com https://widgets.marqeta.com 'report-sample';script-src 'self' https://*.marqeta.com https://js.intercomcdn.com https://*.google-analytics.com https://cdn.wootric.com https://fast.trychameleon.com https://fastly.trychameleon.com https://widget.intercom.io https://cdn.mxpnl.com https://cdn.segment.com https://cdn.amplitude.com https://tracking.g2crowd.com https://scout-cdn.salesloft.com https://serve.albacross.com https://js.hsforms.net https://d3r43gyd9zmfep.cloudfront.net https://cdn-3.convertexperiments.com https://www.googleoptimize.com https://apis.google.com https://www.google.com https://accounts.google.com https://fullstory.com https://*.fullstory.com https://analytics.twitter.com https://bat.bing.com https://cdn.heapanalytics.com https://connect.facebook.net https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-banner.com https://*.hs-scripts.com https://js.hsleadflows.net https://script.hotjar.com https://snap.licdn.com https://static.ads-twitter.com https://static.hotjar.com https://www.googleadservices.com https://*.googletagmanager.com https://unpkg.com https://*.spendesk.com https://app.satismeter.com 'nonce-nvlg72dr1gDJsnzoLm9Yx' 'report-sample';worker-src 'self' blob:;frame-ancestors 'self' https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com chrome-extension://dipeehgoehnglgojdgfmndjemdfepkeb https://*.marqeta.com https://app.storyblok.com https://www.spendesk.com;report-uri https://www.spendesk.com/security/report/csp;block-all-mixed-content
referrer-policy: origin-when-cross-origin
report-to: {"group":"csp-endpoint","max_age":63072000,"endpoints":[{"url":"https://www.spendesk.com/security/report/csp"}]}
x-dns-prefetch-control: off
x-frame-options: sameorigin
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8f088aa67b34b4fa-OSL
X-Firefox-Spdy: h2
|
|
| GET demo.app.spendesk.com/static/fonts/Roobert/Roobert-Medium.woff2 | 172.67.214.148 | 200 OK | 28 kB |
URL GET HTTP/2demo.app.spendesk.com/static/fonts/Roobert/Roobert-Medium.woff2 IP172.67.214.148:443
Requested byhttps://demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp CertificateIssuerGoogle Trust Services Subjectdemo.app.spendesk.com FingerprintFE:33:11:0A:E3:94:37:EA:6F:46:9F:23:65:54:E2:08:CC:3C:EA:AC ValidityThu, 31 Oct 2024 00:57:24 GMT - Wed, 29 Jan 2025 00:57:23 GMT
File typeWeb Open Font Format (Version 2), CFF, length 27668, version 4.0 Hash5be6e378afea754e8b72e05a249031bb 5e227843731eb076cb8d176d01b56e5d53707d95 a69150865cce8cb2fe8cd87234b57ac4b300ffd78cf309f582d52078c2fd1041
GET /static/fonts/Roobert/Roobert-Medium.woff2 HTTP/1.1
Host: demo.app.spendesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp
DNT: 1
Connection: keep-alive
Cookie: spendeskDeviceUUID=ae1d273d-77ec-4d2d-a293-de2ddace1bc3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Dec 2024 21:24:27 GMT
content-type: font/woff2
content-length: 27668
cache-control: no-cache
content-security-policy: frame-ancestors 'self' https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com chrome-extension://dipeehgoehnglgojdgfmndjemdfepkeb https://*.marqeta.com https://app.storyblok.com https://www.spendesk.com
content-security-policy-report-only: connect-src 'self' https://demo.api.spendesk.com https://demo.spendesk.com https://logs.browser-intake-datadoghq.eu https://rum.browser-intake-datadoghq.eu https://browser-intake-datadoghq.eu https://api.segment.io https://cdn.segment.com https://api.amplitude.com https://api.storyblok.com https://api-js.mixpanel.com https://api-iam.intercom.io https://d3r43gyd9zmfep.cloudfront.net wss://nexus-websocket-a.intercom.io https://*.fullstory.com https://bat.bing.com https://in.hotjar.com https://*.trychameleon.com https://forms.hubspot.com https://eligibility.wootric.com https://stats.g.doubleclick.net https://www.google-analytics.com https://*.google-analytics.com https://*.spendesk.tools https://*.spendesk.com https://spx-staging-dev-i18n.s3.eu-west-1.amazonaws.com https://spx-production-i18n.s3.eu-west-1.amazonaws.com https://app.satismeter.com https://accounts.google.com https://px.ads.linkedin.com https://widgets.marqeta.com 'report-sample';script-src 'self' https://*.marqeta.com https://js.intercomcdn.com https://*.google-analytics.com https://cdn.wootric.com https://fast.trychameleon.com https://fastly.trychameleon.com https://widget.intercom.io https://cdn.mxpnl.com https://cdn.segment.com https://cdn.amplitude.com https://tracking.g2crowd.com https://scout-cdn.salesloft.com https://serve.albacross.com https://js.hsforms.net https://d3r43gyd9zmfep.cloudfront.net https://cdn-3.convertexperiments.com https://www.googleoptimize.com https://apis.google.com https://www.google.com https://accounts.google.com https://fullstory.com https://*.fullstory.com https://analytics.twitter.com https://bat.bing.com https://cdn.heapanalytics.com https://connect.facebook.net https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-banner.com https://*.hs-scripts.com https://js.hsleadflows.net https://script.hotjar.com https://snap.licdn.com https://static.ads-twitter.com https://static.hotjar.com https://www.googleadservices.com https://*.googletagmanager.com https://unpkg.com https://*.spendesk.com https://app.satismeter.com 'nonce-qstTWMvgfcHWQ-wcWLGQz' 'report-sample';worker-src 'self' blob:;frame-ancestors 'self' https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com chrome-extension://dipeehgoehnglgojdgfmndjemdfepkeb https://*.marqeta.com https://app.storyblok.com https://www.spendesk.com;report-uri https://www.spendesk.com/security/report/csp;block-all-mixed-content
referrer-policy: origin-when-cross-origin
report-to: {"group":"csp-endpoint","max_age":63072000,"endpoints":[{"url":"https://www.spendesk.com/security/report/csp"}]}
x-dns-prefetch-control: off
x-frame-options: sameorigin
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8f088aa67b32b4fa-OSL
X-Firefox-Spdy: h2
|
|
| demo.app.spendesk.com/static/js/341.05d88036.chunk.js | 172.67.214.148 | 200 OK | 36 kB |
URL demo.app.spendesk.com/static/js/341.05d88036.chunk.js IP172.67.214.148:0
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hash6a9fde17d9468450af6ccc6d338e1962 48488c4c75ca2eb14f212d514c9592805a6575ae 52fab04ab34ba0073dafcdce5a7c55787b869f06e395ecc81d25073da0055a51
GET /static/js/341.05d88036.chunk.js HTTP/1.1
Host: demo.app.spendesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://demo.app.spendesk.com/app
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Dec 2024 21:24:26 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
content-security-policy: frame-ancestors 'self' https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com chrome-extension://dipeehgoehnglgojdgfmndjemdfepkeb https://*.marqeta.com https://app.storyblok.com https://www.spendesk.com
content-security-policy-report-only: connect-src 'self' https://demo.api.spendesk.com https://demo.spendesk.com https://logs.browser-intake-datadoghq.eu https://rum.browser-intake-datadoghq.eu https://browser-intake-datadoghq.eu https://api.segment.io https://cdn.segment.com https://api.amplitude.com https://api.storyblok.com https://api-js.mixpanel.com https://api-iam.intercom.io https://d3r43gyd9zmfep.cloudfront.net wss://nexus-websocket-a.intercom.io https://*.fullstory.com https://bat.bing.com https://in.hotjar.com https://*.trychameleon.com https://forms.hubspot.com https://eligibility.wootric.com https://stats.g.doubleclick.net https://www.google-analytics.com https://*.google-analytics.com https://*.spendesk.tools https://*.spendesk.com https://spx-staging-dev-i18n.s3.eu-west-1.amazonaws.com https://spx-production-i18n.s3.eu-west-1.amazonaws.com https://app.satismeter.com https://accounts.google.com https://px.ads.linkedin.com https://widgets.marqeta.com 'report-sample';script-src 'self' https://*.marqeta.com https://js.intercomcdn.com https://*.google-analytics.com https://cdn.wootric.com https://fast.trychameleon.com https://fastly.trychameleon.com https://widget.intercom.io https://cdn.mxpnl.com https://cdn.segment.com https://cdn.amplitude.com https://tracking.g2crowd.com https://scout-cdn.salesloft.com https://serve.albacross.com https://js.hsforms.net https://d3r43gyd9zmfep.cloudfront.net https://cdn-3.convertexperiments.com https://www.googleoptimize.com https://apis.google.com https://www.google.com https://accounts.google.com https://fullstory.com https://*.fullstory.com https://analytics.twitter.com https://bat.bing.com https://cdn.heapanalytics.com https://connect.facebook.net https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-banner.com https://*.hs-scripts.com https://js.hsleadflows.net https://script.hotjar.com https://snap.licdn.com https://static.ads-twitter.com https://static.hotjar.com https://www.googleadservices.com https://*.googletagmanager.com https://unpkg.com https://*.spendesk.com https://app.satismeter.com 'nonce-ZRZX2vc9JtaBIROIoFb9M' 'report-sample';worker-src 'self' blob:;frame-ancestors 'self' https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com chrome-extension://dipeehgoehnglgojdgfmndjemdfepkeb https://*.marqeta.com https://app.storyblok.com https://www.spendesk.com;report-uri https://www.spendesk.com/security/report/csp;block-all-mixed-content
referrer-policy: origin-when-cross-origin
report-to: {"group":"csp-endpoint","max_age":63072000,"endpoints":[{"url":"https://www.spendesk.com/security/report/csp"}]}
x-dns-prefetch-control: off
x-frame-options: sameorigin
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8f088aa38ee0b4fa-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| GET demo.app.spendesk.com/static/fonts/Patron/Patron-Medium.woff2 | 172.67.214.148 | 404 Not Found | 13 B |
URL GET HTTP/2demo.app.spendesk.com/static/fonts/Patron/Patron-Medium.woff2 IP172.67.214.148:443
Requested byhttps://demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp CertificateIssuerGoogle Trust Services Subjectdemo.app.spendesk.com FingerprintFE:33:11:0A:E3:94:37:EA:6F:46:9F:23:65:54:E2:08:CC:3C:EA:AC ValidityThu, 31 Oct 2024 00:57:24 GMT - Wed, 29 Jan 2025 00:57:23 GMT
File typeASCII text, with no line terminators Hash1e6cd917ed71a1241e4bedc29264bd98 5b65037351caeb0e5a48d963d7ffa88d0271d546 7d04f7431bbfa41a04bcc7e6b98b9de0d919756c4c671c5785c99fff45f16402
GET /static/fonts/Patron/Patron-Medium.woff2 HTTP/1.1
Host: demo.app.spendesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp
DNT: 1
Connection: keep-alive
Cookie: spendeskDeviceUUID=ae1d273d-77ec-4d2d-a293-de2ddace1bc3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
date: Wed, 11 Dec 2024 21:24:27 GMT
content-type: text/plain; charset=UTF-8
content-length: 13
content-security-policy: frame-ancestors 'self' https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com chrome-extension://dipeehgoehnglgojdgfmndjemdfepkeb https://*.marqeta.com https://app.storyblok.com https://www.spendesk.com
content-security-policy-report-only: connect-src 'self' https://demo.api.spendesk.com https://demo.spendesk.com https://logs.browser-intake-datadoghq.eu https://rum.browser-intake-datadoghq.eu https://browser-intake-datadoghq.eu https://api.segment.io https://cdn.segment.com https://api.amplitude.com https://api.storyblok.com https://api-js.mixpanel.com https://api-iam.intercom.io https://d3r43gyd9zmfep.cloudfront.net wss://nexus-websocket-a.intercom.io https://*.fullstory.com https://bat.bing.com https://in.hotjar.com https://*.trychameleon.com https://forms.hubspot.com https://eligibility.wootric.com https://stats.g.doubleclick.net https://www.google-analytics.com https://*.google-analytics.com https://*.spendesk.tools https://*.spendesk.com https://spx-staging-dev-i18n.s3.eu-west-1.amazonaws.com https://spx-production-i18n.s3.eu-west-1.amazonaws.com https://app.satismeter.com https://accounts.google.com https://px.ads.linkedin.com https://widgets.marqeta.com 'report-sample';script-src 'self' https://*.marqeta.com https://js.intercomcdn.com https://*.google-analytics.com https://cdn.wootric.com https://fast.trychameleon.com https://fastly.trychameleon.com https://widget.intercom.io https://cdn.mxpnl.com https://cdn.segment.com https://cdn.amplitude.com https://tracking.g2crowd.com https://scout-cdn.salesloft.com https://serve.albacross.com https://js.hsforms.net https://d3r43gyd9zmfep.cloudfront.net https://cdn-3.convertexperiments.com https://www.googleoptimize.com https://apis.google.com https://www.google.com https://accounts.google.com https://fullstory.com https://*.fullstory.com https://analytics.twitter.com https://bat.bing.com https://cdn.heapanalytics.com https://connect.facebook.net https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-banner.com https://*.hs-scripts.com https://js.hsleadflows.net https://script.hotjar.com https://snap.licdn.com https://static.ads-twitter.com https://static.hotjar.com https://www.googleadservices.com https://*.googletagmanager.com https://unpkg.com https://*.spendesk.com https://app.satismeter.com 'nonce-i2Dwyob7gEHcLuNi4wYym' 'report-sample';worker-src 'self' blob:;frame-ancestors 'self' https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com chrome-extension://dipeehgoehnglgojdgfmndjemdfepkeb https://*.marqeta.com https://app.storyblok.com https://www.spendesk.com;report-uri https://www.spendesk.com/security/report/csp;block-all-mixed-content
referrer-policy: origin-when-cross-origin
report-to: {"group":"csp-endpoint","max_age":63072000,"endpoints":[{"url":"https://www.spendesk.com/security/report/csp"}]}
x-dns-prefetch-control: off
x-frame-options: sameorigin
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8f088aa67b37b4fa-OSL
X-Firefox-Spdy: h2
|
|
| GET demo.app.spendesk.com/static/img/apple-touch-icon.png | 172.67.214.148 | 200 OK | 1.8 kB |
URL GET HTTP/2demo.app.spendesk.com/static/img/apple-touch-icon.png IP172.67.214.148:443
Requested byhttps://demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp CertificateIssuerGoogle Trust Services Subjectdemo.app.spendesk.com FingerprintFE:33:11:0A:E3:94:37:EA:6F:46:9F:23:65:54:E2:08:CC:3C:EA:AC ValidityThu, 31 Oct 2024 00:57:24 GMT - Wed, 29 Jan 2025 00:57:23 GMT
File typePNG image data, 128 x 128, 8-bit colormap, non-interlaced Hash98e064e8b2392e0ce7bef89f43591102 a69df76c84e66d65766eb465bba0fb5da885a566 0783936faf318ad7f85f467c3e798df1ffacdfb70ef28dc644287082a9a39ac0
GET /static/img/apple-touch-icon.png HTTP/1.1
Host: demo.app.spendesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp
DNT: 1
Connection: keep-alive
Cookie: spendeskDeviceUUID=ae1d273d-77ec-4d2d-a293-de2ddace1bc3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Dec 2024 21:24:28 GMT
content-type: image/png
content-length: 1759
cache-control: no-cache
content-security-policy: frame-ancestors 'self' https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com chrome-extension://dipeehgoehnglgojdgfmndjemdfepkeb https://*.marqeta.com https://app.storyblok.com https://www.spendesk.com
content-security-policy-report-only: connect-src 'self' https://demo.api.spendesk.com https://demo.spendesk.com https://logs.browser-intake-datadoghq.eu https://rum.browser-intake-datadoghq.eu https://browser-intake-datadoghq.eu https://api.segment.io https://cdn.segment.com https://api.amplitude.com https://api.storyblok.com https://api-js.mixpanel.com https://api-iam.intercom.io https://d3r43gyd9zmfep.cloudfront.net wss://nexus-websocket-a.intercom.io https://*.fullstory.com https://bat.bing.com https://in.hotjar.com https://*.trychameleon.com https://forms.hubspot.com https://eligibility.wootric.com https://stats.g.doubleclick.net https://www.google-analytics.com https://*.google-analytics.com https://*.spendesk.tools https://*.spendesk.com https://spx-staging-dev-i18n.s3.eu-west-1.amazonaws.com https://spx-production-i18n.s3.eu-west-1.amazonaws.com https://app.satismeter.com https://accounts.google.com https://px.ads.linkedin.com https://widgets.marqeta.com 'report-sample';script-src 'self' https://*.marqeta.com https://js.intercomcdn.com https://*.google-analytics.com https://cdn.wootric.com https://fast.trychameleon.com https://fastly.trychameleon.com https://widget.intercom.io https://cdn.mxpnl.com https://cdn.segment.com https://cdn.amplitude.com https://tracking.g2crowd.com https://scout-cdn.salesloft.com https://serve.albacross.com https://js.hsforms.net https://d3r43gyd9zmfep.cloudfront.net https://cdn-3.convertexperiments.com https://www.googleoptimize.com https://apis.google.com https://www.google.com https://accounts.google.com https://fullstory.com https://*.fullstory.com https://analytics.twitter.com https://bat.bing.com https://cdn.heapanalytics.com https://connect.facebook.net https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-banner.com https://*.hs-scripts.com https://js.hsleadflows.net https://script.hotjar.com https://snap.licdn.com https://static.ads-twitter.com https://static.hotjar.com https://www.googleadservices.com https://*.googletagmanager.com https://unpkg.com https://*.spendesk.com https://app.satismeter.com 'nonce-uJr55ekD3cnTD7OiaZrpl' 'report-sample';worker-src 'self' blob:;frame-ancestors 'self' https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com chrome-extension://dipeehgoehnglgojdgfmndjemdfepkeb https://*.marqeta.com https://app.storyblok.com https://www.spendesk.com;report-uri https://www.spendesk.com/security/report/csp;block-all-mixed-content
referrer-policy: origin-when-cross-origin
report-to: {"group":"csp-endpoint","max_age":63072000,"endpoints":[{"url":"https://www.spendesk.com/security/report/csp"}]}
x-dns-prefetch-control: off
x-frame-options: sameorigin
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8f088aabdb62b4fa-OSL
X-Firefox-Spdy: h2
|
|
| GET demo.app.spendesk.com/static/css/auth.35e100a4.css | 172.67.214.148 | 200 OK | 14 kB |
URL GET HTTP/2demo.app.spendesk.com/static/css/auth.35e100a4.css IP172.67.214.148:443
Requested byhttps://demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp CertificateIssuerGoogle Trust Services Subjectdemo.app.spendesk.com FingerprintFE:33:11:0A:E3:94:37:EA:6F:46:9F:23:65:54:E2:08:CC:3C:EA:AC ValidityThu, 31 Oct 2024 00:57:24 GMT - Wed, 29 Jan 2025 00:57:23 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hashe69512ec67fb5c0da7527c8bc141ccb3 71d1be734e3ec4290e539d081e988d3b43ab0f01 84d50f5063c2a24f6a45c274bbb5d9dd91685650efe2bb12215914a363d7ffa2
GET /static/css/auth.35e100a4.css HTTP/1.1
Host: demo.app.spendesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp
DNT: 1
Connection: keep-alive
Cookie: spendeskDeviceUUID=ae1d273d-77ec-4d2d-a293-de2ddace1bc3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Dec 2024 21:24:27 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=31536000, immutable
content-security-policy: frame-ancestors 'self' https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com chrome-extension://dipeehgoehnglgojdgfmndjemdfepkeb https://*.marqeta.com https://app.storyblok.com https://www.spendesk.com
content-security-policy-report-only: connect-src 'self' https://demo.api.spendesk.com https://demo.spendesk.com https://logs.browser-intake-datadoghq.eu https://rum.browser-intake-datadoghq.eu https://browser-intake-datadoghq.eu https://api.segment.io https://cdn.segment.com https://api.amplitude.com https://api.storyblok.com https://api-js.mixpanel.com https://api-iam.intercom.io https://d3r43gyd9zmfep.cloudfront.net wss://nexus-websocket-a.intercom.io https://*.fullstory.com https://bat.bing.com https://in.hotjar.com https://*.trychameleon.com https://forms.hubspot.com https://eligibility.wootric.com https://stats.g.doubleclick.net https://www.google-analytics.com https://*.google-analytics.com https://*.spendesk.tools https://*.spendesk.com https://spx-staging-dev-i18n.s3.eu-west-1.amazonaws.com https://spx-production-i18n.s3.eu-west-1.amazonaws.com https://app.satismeter.com https://accounts.google.com https://px.ads.linkedin.com https://widgets.marqeta.com 'report-sample';script-src 'self' https://*.marqeta.com https://js.intercomcdn.com https://*.google-analytics.com https://cdn.wootric.com https://fast.trychameleon.com https://fastly.trychameleon.com https://widget.intercom.io https://cdn.mxpnl.com https://cdn.segment.com https://cdn.amplitude.com https://tracking.g2crowd.com https://scout-cdn.salesloft.com https://serve.albacross.com https://js.hsforms.net https://d3r43gyd9zmfep.cloudfront.net https://cdn-3.convertexperiments.com https://www.googleoptimize.com https://apis.google.com https://www.google.com https://accounts.google.com https://fullstory.com https://*.fullstory.com https://analytics.twitter.com https://bat.bing.com https://cdn.heapanalytics.com https://connect.facebook.net https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-banner.com https://*.hs-scripts.com https://js.hsleadflows.net https://script.hotjar.com https://snap.licdn.com https://static.ads-twitter.com https://static.hotjar.com https://www.googleadservices.com https://*.googletagmanager.com https://unpkg.com https://*.spendesk.com https://app.satismeter.com 'nonce-1iHRChD_FsvoGuibhOv1O' 'report-sample';worker-src 'self' blob:;frame-ancestors 'self' https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com chrome-extension://dipeehgoehnglgojdgfmndjemdfepkeb https://*.marqeta.com https://app.storyblok.com https://www.spendesk.com;report-uri https://www.spendesk.com/security/report/csp;block-all-mixed-content
referrer-policy: origin-when-cross-origin
report-to: {"group":"csp-endpoint","max_age":63072000,"endpoints":[{"url":"https://www.spendesk.com/security/report/csp"}]}
x-dns-prefetch-control: off
x-frame-options: sameorigin
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8f088aa69b58b4fa-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| GET demo.app.spendesk.com/static/fonts/GT-America/GT-America-Standard-Regular.woff2 | 172.67.214.148 | 200 OK | 44 kB |
URL GET HTTP/2demo.app.spendesk.com/static/fonts/GT-America/GT-America-Standard-Regular.woff2 IP172.67.214.148:443
Requested byhttps://demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp CertificateIssuerGoogle Trust Services Subjectdemo.app.spendesk.com FingerprintFE:33:11:0A:E3:94:37:EA:6F:46:9F:23:65:54:E2:08:CC:3C:EA:AC ValidityThu, 31 Oct 2024 00:57:24 GMT - Wed, 29 Jan 2025 00:57:23 GMT
File typeWeb Open Font Format (Version 2), CFF, length 44200, version 1.327 Hashc6df1ba610411c62ea07be2ac87cf32f 87ebdb1227ec173685fd334befa2cb2decf921e2 b18a47adc4778eb3357f4f394d3a3d72dc735de8495026ccd2f96586495116d2
GET /static/fonts/GT-America/GT-America-Standard-Regular.woff2 HTTP/1.1
Host: demo.app.spendesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://demo.app.spendesk.com/static/css/auth.35e100a4.css
DNT: 1
Connection: keep-alive
Cookie: spendeskDeviceUUID=ae1d273d-77ec-4d2d-a293-de2ddace1bc3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Dec 2024 21:24:28 GMT
content-type: font/woff2
content-length: 44200
cache-control: no-cache
content-security-policy: frame-ancestors 'self' https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com chrome-extension://dipeehgoehnglgojdgfmndjemdfepkeb https://*.marqeta.com https://app.storyblok.com https://www.spendesk.com
content-security-policy-report-only: connect-src 'self' https://demo.api.spendesk.com https://demo.spendesk.com https://logs.browser-intake-datadoghq.eu https://rum.browser-intake-datadoghq.eu https://browser-intake-datadoghq.eu https://api.segment.io https://cdn.segment.com https://api.amplitude.com https://api.storyblok.com https://api-js.mixpanel.com https://api-iam.intercom.io https://d3r43gyd9zmfep.cloudfront.net wss://nexus-websocket-a.intercom.io https://*.fullstory.com https://bat.bing.com https://in.hotjar.com https://*.trychameleon.com https://forms.hubspot.com https://eligibility.wootric.com https://stats.g.doubleclick.net https://www.google-analytics.com https://*.google-analytics.com https://*.spendesk.tools https://*.spendesk.com https://spx-staging-dev-i18n.s3.eu-west-1.amazonaws.com https://spx-production-i18n.s3.eu-west-1.amazonaws.com https://app.satismeter.com https://accounts.google.com https://px.ads.linkedin.com https://widgets.marqeta.com 'report-sample';script-src 'self' https://*.marqeta.com https://js.intercomcdn.com https://*.google-analytics.com https://cdn.wootric.com https://fast.trychameleon.com https://fastly.trychameleon.com https://widget.intercom.io https://cdn.mxpnl.com https://cdn.segment.com https://cdn.amplitude.com https://tracking.g2crowd.com https://scout-cdn.salesloft.com https://serve.albacross.com https://js.hsforms.net https://d3r43gyd9zmfep.cloudfront.net https://cdn-3.convertexperiments.com https://www.googleoptimize.com https://apis.google.com https://www.google.com https://accounts.google.com https://fullstory.com https://*.fullstory.com https://analytics.twitter.com https://bat.bing.com https://cdn.heapanalytics.com https://connect.facebook.net https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-banner.com https://*.hs-scripts.com https://js.hsleadflows.net https://script.hotjar.com https://snap.licdn.com https://static.ads-twitter.com https://static.hotjar.com https://www.googleadservices.com https://*.googletagmanager.com https://unpkg.com https://*.spendesk.com https://app.satismeter.com 'nonce-jOv9NUjdU_XpRBj32vuYw' 'report-sample';worker-src 'self' blob:;frame-ancestors 'self' https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com chrome-extension://dipeehgoehnglgojdgfmndjemdfepkeb https://*.marqeta.com https://app.storyblok.com https://www.spendesk.com;report-uri https://www.spendesk.com/security/report/csp;block-all-mixed-content
referrer-policy: origin-when-cross-origin
report-to: {"group":"csp-endpoint","max_age":63072000,"endpoints":[{"url":"https://www.spendesk.com/security/report/csp"}]}
x-dns-prefetch-control: off
x-frame-options: sameorigin
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8f088aaecf0ab4fa-OSL
X-Firefox-Spdy: h2
|
|
| GET api.storyblok.com/v2/cdn/stories/app/auth-login?version=published&language=undefined&token=sQ9elN5jEMBD1tDyDVrpDQtt&cv=undefined | 143.204.55.88 | 200 OK | 215 B |
URL GET HTTP/2api.storyblok.com/v2/cdn/stories/app/auth-login?version=published&language=undefined&token=sQ9elN5jEMBD1tDyDVrpDQtt&cv=undefined IP143.204.55.88:443
Requested byhttps://demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp CertificateIssuerAmazon Subject*.storyblok.com Fingerprint21:D0:E8:2F:D5:AC:D8:6C:D3:EE:89:60:59:F4:5F:2A:0A:36:84:AB ValidityFri, 30 Aug 2024 00:00:00 GMT - Sat, 27 Sep 2025 23:59:59 GMT
File typeHTML document, ASCII text, with no line terminators Hasha24b2f9d95e84aefcb6a5f4f2d84a42c e1ab21363e88472fa428630bb78bef8d359b496c b278572a883dd48e50df7dbf69bba3656ccbd59feabce05194bd6c3a2eb1adae
OPTIONS /v2/cdn/stories/app/auth-login?version=published&language=undefined&token=sQ9elN5jEMBD1tDyDVrpDQtt&cv=undefined HTTP/1.1
Host: api.storyblok.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type,sb-agent,sb-agent-version
Referer: https://demo.app.spendesk.com/
Origin: https://demo.app.spendesk.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 11 Dec 2024 21:24:28 GMT
server: nginx/1.25.4
access-control-allow-origin: https://demo.app.spendesk.com
access-control-allow-methods: GET, POST, DELETE, PUT, PATCH, OPTIONS, HEAD
access-control-expose-headers: Api-Version, Token, Total, Per-Page
access-control-max-age: 7200
access-control-allow-credentials: true
access-control-allow-headers: content-type,sb-agent,sb-agent-version
x-cache: Miss from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: H-b0VDELcC_-iBAoL4ATrM95imjhSEukwaF7I6fI4sbMlIjNsegrCw==
X-Firefox-Spdy: h2
|
|
| GET demo.app.spendesk.com/static/fonts/GT-America/GT-America-Standard-Medium.woff2 | 172.67.214.148 | 200 OK | 47 kB |
URL GET HTTP/2demo.app.spendesk.com/static/fonts/GT-America/GT-America-Standard-Medium.woff2 IP172.67.214.148:443
Requested byhttps://demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp CertificateIssuerGoogle Trust Services Subjectdemo.app.spendesk.com FingerprintFE:33:11:0A:E3:94:37:EA:6F:46:9F:23:65:54:E2:08:CC:3C:EA:AC ValidityThu, 31 Oct 2024 00:57:24 GMT - Wed, 29 Jan 2025 00:57:23 GMT
File typeWeb Open Font Format (Version 2), CFF, length 47312, version 1.327 Hashd6164d1ac7c7b8ebad422a434643407f 76fbdd3a483b842fe53e3a66a227fba5b4dee65c efbe58145c528ec450558c72fcc9292e22691ed83318d8fb99be0948a6e8fafa
GET /static/fonts/GT-America/GT-America-Standard-Medium.woff2 HTTP/1.1
Host: demo.app.spendesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://demo.app.spendesk.com/static/css/auth.35e100a4.css
DNT: 1
Connection: keep-alive
Cookie: spendeskDeviceUUID=ae1d273d-77ec-4d2d-a293-de2ddace1bc3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Dec 2024 21:24:29 GMT
content-type: font/woff2
content-length: 47312
cache-control: no-cache
content-security-policy: frame-ancestors 'self' https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com chrome-extension://dipeehgoehnglgojdgfmndjemdfepkeb https://*.marqeta.com https://app.storyblok.com https://www.spendesk.com
content-security-policy-report-only: connect-src 'self' https://demo.api.spendesk.com https://demo.spendesk.com https://logs.browser-intake-datadoghq.eu https://rum.browser-intake-datadoghq.eu https://browser-intake-datadoghq.eu https://api.segment.io https://cdn.segment.com https://api.amplitude.com https://api.storyblok.com https://api-js.mixpanel.com https://api-iam.intercom.io https://d3r43gyd9zmfep.cloudfront.net wss://nexus-websocket-a.intercom.io https://*.fullstory.com https://bat.bing.com https://in.hotjar.com https://*.trychameleon.com https://forms.hubspot.com https://eligibility.wootric.com https://stats.g.doubleclick.net https://www.google-analytics.com https://*.google-analytics.com https://*.spendesk.tools https://*.spendesk.com https://spx-staging-dev-i18n.s3.eu-west-1.amazonaws.com https://spx-production-i18n.s3.eu-west-1.amazonaws.com https://app.satismeter.com https://accounts.google.com https://px.ads.linkedin.com https://widgets.marqeta.com 'report-sample';script-src 'self' https://*.marqeta.com https://js.intercomcdn.com https://*.google-analytics.com https://cdn.wootric.com https://fast.trychameleon.com https://fastly.trychameleon.com https://widget.intercom.io https://cdn.mxpnl.com https://cdn.segment.com https://cdn.amplitude.com https://tracking.g2crowd.com https://scout-cdn.salesloft.com https://serve.albacross.com https://js.hsforms.net https://d3r43gyd9zmfep.cloudfront.net https://cdn-3.convertexperiments.com https://www.googleoptimize.com https://apis.google.com https://www.google.com https://accounts.google.com https://fullstory.com https://*.fullstory.com https://analytics.twitter.com https://bat.bing.com https://cdn.heapanalytics.com https://connect.facebook.net https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-banner.com https://*.hs-scripts.com https://js.hsleadflows.net https://script.hotjar.com https://snap.licdn.com https://static.ads-twitter.com https://static.hotjar.com https://www.googleadservices.com https://*.googletagmanager.com https://unpkg.com https://*.spendesk.com https://app.satismeter.com 'nonce-Mcqn0LQnAu4HlmxxTfqhj' 'report-sample';worker-src 'self' blob:;frame-ancestors 'self' https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com chrome-extension://dipeehgoehnglgojdgfmndjemdfepkeb https://*.marqeta.com https://app.storyblok.com https://www.spendesk.com;report-uri https://www.spendesk.com/security/report/csp;block-all-mixed-content
referrer-policy: origin-when-cross-origin
report-to: {"group":"csp-endpoint","max_age":63072000,"endpoints":[{"url":"https://www.spendesk.com/security/report/csp"}]}
x-dns-prefetch-control: off
x-frame-options: sameorigin
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8f088ab08962b4fa-OSL
X-Firefox-Spdy: h2
|
|
| GET a.storyblok.com/f/146026/1168x689/b52eeb0556/login-page-uk-procurement-webinar.png/m/520x0 | 54.240.174.29 | 200 OK | 38 kB |
URL GET HTTP/2a.storyblok.com/f/146026/1168x689/b52eeb0556/login-page-uk-procurement-webinar.png/m/520x0 IP54.240.174.29:443
Requested byhttps://demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp CertificateIssuerAmazon Subject*.storyblok.com Fingerprint21:D0:E8:2F:D5:AC:D8:6C:D3:EE:89:60:59:F4:5F:2A:0A:36:84:AB ValidityFri, 30 Aug 2024 00:00:00 GMT - Sat, 27 Sep 2025 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image Hash753f39e0fb8a6a4750a33d0d572129a8 fb19c9d3e34f572ac5e166e40608dce09cac61ef a8d290f7d0cf0f15d3a68c7e009b7852997e0c4ece61f5eceb892d61c43e4f9f
GET /f/146026/1168x689/b52eeb0556/login-page-uk-procurement-webinar.png/m/520x0 HTTP/1.1
Host: a.storyblok.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://demo.app.spendesk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/webp
content-length: 37890
date: Wed, 11 Dec 2024 21:24:29 GMT
server: nginx/1.22.1
cache-control: max-age=31536000,public
expires: Thu, 11 Dec 2025 21:24:29 GMT
etag: "fb19c9d3e34f572ac5e166e40608dce09cac61ef"
vary: Accept
x-cache: Miss from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: F4hRE8eep-4aaQZCKoMfV_ym6QZqM2cCcUqY3AnMQr2NeRA5FOv37A==
X-Firefox-Spdy: h2
|
|
| GET cdn.segment.com/v1/projects/TSAxLekhmUq4T9ssyyMEsmYFhMEOVezM/settings | 143.204.48.96 | 200 OK | 10 kB |
URL GET HTTP/2cdn.segment.com/v1/projects/TSAxLekhmUq4T9ssyyMEsmYFhMEOVezM/settings IP143.204.48.96:443
Requested byhttps://demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp CertificateIssuerAmazon Subject*.segment.com Fingerprint68:FC:54:EF:11:C2:99:CE:81:58:5A:E2:9B:FD:C0:05:1B:8D:9D:B4 ValidityTue, 15 Oct 2024 00:00:00 GMT - Fri, 14 Nov 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (20192) Hashaf047263972bc27154b9154cc35cce43 9a4085e161acd901798e5ae338f6b5177b1a1485 711db038ca5769031759e944a78ae78811ca9db2fe8ec3b1e73c2935b491d219
GET /v1/projects/TSAxLekhmUq4T9ssyyMEsmYFhMEOVezM/settings HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://demo.app.spendesk.com
DNT: 1
Connection: keep-alive
Referer: https://demo.app.spendesk.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Wed, 13 Nov 2024 20:55:29 GMT
server: AmazonS3
x-amz-server-side-encryption: AES256
x-amz-version-id: bd_LIVo4_0da0zogmSam65HfcfpUT_cM
content-encoding: gzip
date: Wed, 11 Dec 2024 21:24:30 GMT
cache-control: public, max-age=10800
etag: W/"e560a67b966f9e39209dd894ae8c51ea"
vary: accept-encoding
x-cache: RefreshHit from cloudfront
via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: xvvGZo0XncK-4lC2FyTkpOUiDauC7llHqMwZK8oQepXaJeA0uLLvXA==
X-Firefox-Spdy: h2
|
|
| GET cdn.segment.com/next-integrations/integrations/fullstory/3.1.0/fullstory.dynamic.js.gz | 143.204.48.96 | 200 OK | 2.2 kB |
URL GET HTTP/2cdn.segment.com/next-integrations/integrations/fullstory/3.1.0/fullstory.dynamic.js.gz IP143.204.48.96:443
Requested byhttps://demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp CertificateIssuerAmazon Subject*.segment.com Fingerprint68:FC:54:EF:11:C2:99:CE:81:58:5A:E2:9B:FD:C0:05:1B:8D:9D:B4 ValidityTue, 15 Oct 2024 00:00:00 GMT - Fri, 14 Nov 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (5103) Hash6776a6e921e6eeeb1a9ec550d5bd98f4 fc974754f92811898ffd94d589942c2f6710a894 e9fda204818eb76752b45ba07f2a3357507dfbd1ffac18a8badebda6f96feab7
GET /next-integrations/integrations/fullstory/3.1.0/fullstory.dynamic.js.gz HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://demo.app.spendesk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 2166
date: Fri, 12 Apr 2024 16:56:40 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Fri, 05 Apr 2024 16:42:47 GMT
etag: "5ab49a383e9cf7b93c013d369b1b30f7"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000,immutable
content-encoding: gzip
x-amz-version-id: oPHfKDIg3jvUi4BGP8xSSh5eX6u0MY0C
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: B_71sXiE01x2fKMAm_kphaJlzdfq95jY1Wu_C3ZHA7dZitnSdUJWRw==
age: 21011270
X-Firefox-Spdy: h2
|
|
| GET cdn.segment.com/next-integrations/actions/845/449cd4534726259c2a8c.js | 143.204.48.96 | 200 OK | 30 kB |
URL GET HTTP/2cdn.segment.com/next-integrations/actions/845/449cd4534726259c2a8c.js IP143.204.48.96:443
Requested byhttps://demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp CertificateIssuerAmazon Subject*.segment.com Fingerprint68:FC:54:EF:11:C2:99:CE:81:58:5A:E2:9B:FD:C0:05:1B:8D:9D:B4 ValidityTue, 15 Oct 2024 00:00:00 GMT - Fri, 14 Nov 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (37307) Hash83326d231ed3a6f846d4faaaee966f83 cc21c333798b6d73f3bca387b0366f1a25bffead 75b783d4a1bb58c830ba076c87772414647dec9ed718576e2663d3c7a84cfff1
GET /next-integrations/actions/845/449cd4534726259c2a8c.js HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://demo.app.spendesk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Tue, 19 Nov 2024 11:09:30 GMT
server: AmazonS3
x-amz-server-side-encryption: AES256
x-amz-version-id: EVVx1GCj7M7hpqtpgfo0MxQRbP40BXw2
content-encoding: gzip
date: Wed, 11 Dec 2024 03:26:11 GMT
etag: W/"4e4e40c0ccc652a7cc4cef7c2146c1f5"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: j4MS0lHfkQj59RzFVzCKOEuV5tjmm5ZaTHD3WDnUQrnJIRSs0U0GmQ==
age: 64714
X-Firefox-Spdy: h2
|
|
| GET widget.intercom.io/widget/hixn7d3x | 143.204.55.8 | 200 OK | 2.7 kB |
URL GET HTTP/2widget.intercom.io/widget/hixn7d3x IP143.204.55.8:443
Requested byhttps://demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp CertificateIssuerAmazon Subject*.intercom.com Fingerprint84:3F:75:36:86:5B:6C:03:88:CA:23:42:18:14:5B:D4:46:C7:9D:A3 ValidityMon, 15 Jan 2024 00:00:00 GMT - Tue, 11 Feb 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (6697), with no line terminators Hash03307e5e12eac8746c6b3d03eb23ece5 c948a70d8d1de77b359cb4392a2f87c0f7b850c4 be143fb19228c8af95458c740a070ce3be3b392cc5f2cadb335e9c50bd8be5ee
GET /widget/hixn7d3x HTTP/1.1
Host: widget.intercom.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://demo.app.spendesk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
content-length: 2667
last-modified: Wed, 11 Dec 2024 15:25:31 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: cmAdMaDgtBi1Sk.ZnBXOlrk.oiH_OsqA
accept-ranges: bytes
server: AmazonS3
date: Wed, 11 Dec 2024 21:21:33 GMT
cache-control: max-age=300, s-maxage=300, public
etag: "7c1aeeb08e66f36174eb683a79a4b64a"
x-cache: Error from cloudfront
via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: o-9HWq6UH6A96QDmsEv0wxu87wHGK3ImjksdSLLjw3Ta2UhuHANOug==
age: 235
cross-origin-resource-policy: cross-origin
vary: accept-encoding, Origin
X-Firefox-Spdy: h2
|
|
| GET js.intercomcdn.com/frame.d38941f5.js | 54.240.174.98 | 200 OK | 189 kB |
URL GET HTTP/2js.intercomcdn.com/frame.d38941f5.js IP54.240.174.98:443
Requested byhttps://demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp CertificateIssuerAmazon Subject*.intercomcdn.com FingerprintD2:4F:FB:78:56:DC:20:7E:66:CC:9B:57:7F:92:C2:FA:50:69:C1:5B ValidityThu, 31 Oct 2024 00:00:00 GMT - Fri, 28 Nov 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65464) Size189 kB (188929 bytes) Hashe387a9a6acd0fc215d2151e6e43014ae 9fb75dafdb7c1c251406e810190c7d1fea1f36dd f55408c07082996e85594e780307267dcb2bf23e7f3f4caa2c931a3ddfb5ee64
GET /frame.d38941f5.js HTTP/1.1
Host: js.intercomcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://demo.app.spendesk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
content-length: 188929
last-modified: Wed, 11 Dec 2024 15:23:16 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: y1TzJAFWj_JUluBlovYLAotWZ0FULLZa
accept-ranges: bytes
server: AmazonS3
date: Wed, 11 Dec 2024 19:25:34 GMT
cache-control: max-age=31536000, s-maxage=7200, public
etag: "7191dcffe6120f9235825521b021dad0"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: IhVpUCdb9TqSgZG7O7d9_UsjEjiDKej9i4mYATg-YOJka_JESNusXA==
age: 7137
strict-transport-security: max-age=31536000; includeSubDomains; preload
cross-origin-resource-policy: cross-origin
X-Firefox-Spdy: h2
|
|
| GET js.intercomcdn.com/vendor.6349e54f.js | 54.240.174.98 | 200 OK | 197 kB |
URL GET HTTP/2js.intercomcdn.com/vendor.6349e54f.js IP54.240.174.98:443
Requested byhttps://demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp CertificateIssuerAmazon Subject*.intercomcdn.com FingerprintD2:4F:FB:78:56:DC:20:7E:66:CC:9B:57:7F:92:C2:FA:50:69:C1:5B ValidityThu, 31 Oct 2024 00:00:00 GMT - Fri, 28 Nov 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65463) Size197 kB (196869 bytes) Hash1ec7461bf69700b2f0802a00c88f182a d2131575fc0288f18d37070862d254109a7ff626 ddbc3fbeaa904c77f2cbc8029158dfbcd2ad2b41a8a033e8e715b9ccefd4db78
GET /vendor.6349e54f.js HTTP/1.1
Host: js.intercomcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://demo.app.spendesk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
content-length: 196869
last-modified: Tue, 10 Dec 2024 15:38:03 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: r0hYG60f7vTCEo7ZqpVzE.C9hXPTBkbk
accept-ranges: bytes
server: AmazonS3
date: Wed, 11 Dec 2024 21:12:39 GMT
cache-control: max-age=31536000, s-maxage=7200, public
etag: "72afb86f841a4306b6702132c561fde7"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 7cQbvae34FHUZwrdO5krMJovLLXqbqVpKjTwSUE8SyAPMxieeOuPsA==
age: 712
strict-transport-security: max-age=31536000; includeSubDomains; preload
cross-origin-resource-policy: cross-origin
X-Firefox-Spdy: h2
|
|
| GET demo.app.spendesk.com/static/img/logo-chevrons-purple.svg |  0.0.0.0 | | 0 B |
URL GET demo.app.spendesk.com/static/img/logo-chevrons-purple.svg IP0.0.0.0:0
Requested byhttps://demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp CertificateIssuerGoogle Trust Services Subjectdemo.app.spendesk.com FingerprintFE:33:11:0A:E3:94:37:EA:6F:46:9F:23:65:54:E2:08:CC:3C:EA:AC ValidityThu, 31 Oct 2024 00:57:24 GMT - Wed, 29 Jan 2025 00:57:23 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static/img/logo-chevrons-purple.svg HTTP/1.1
Host: demo.app.spendesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp
DNT: 1
Connection: keep-alive
Cookie: spendeskDeviceUUID=ae1d273d-77ec-4d2d-a293-de2ddace1bc3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
|
|
| GET demo.app.spendesk.com/static/lang/en/auth.25d732b8.json | 172.67.214.148 | 200 OK | 25 kB |
URL GET HTTP/2demo.app.spendesk.com/static/lang/en/auth.25d732b8.json IP172.67.214.148:443
Requested byhttps://demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp CertificateIssuerGoogle Trust Services Subjectdemo.app.spendesk.com FingerprintFE:33:11:0A:E3:94:37:EA:6F:46:9F:23:65:54:E2:08:CC:3C:EA:AC ValidityThu, 31 Oct 2024 00:57:24 GMT - Wed, 29 Jan 2025 00:57:23 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static/lang/en/auth.25d732b8.json HTTP/1.1
Host: demo.app.spendesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp
DNT: 1
Connection: keep-alive
Cookie: spendeskDeviceUUID=ae1d273d-77ec-4d2d-a293-de2ddace1bc3
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 11 Dec 2024 21:24:28 GMT
content-type: application/json; charset=utf-8
cache-control: public, max-age=31536000, immutable
content-security-policy: frame-ancestors 'self' https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com chrome-extension://dipeehgoehnglgojdgfmndjemdfepkeb https://*.marqeta.com https://app.storyblok.com https://www.spendesk.com
content-security-policy-report-only: connect-src 'self' https://demo.api.spendesk.com https://demo.spendesk.com https://logs.browser-intake-datadoghq.eu https://rum.browser-intake-datadoghq.eu https://browser-intake-datadoghq.eu https://api.segment.io https://cdn.segment.com https://api.amplitude.com https://api.storyblok.com https://api-js.mixpanel.com https://api-iam.intercom.io https://d3r43gyd9zmfep.cloudfront.net wss://nexus-websocket-a.intercom.io https://*.fullstory.com https://bat.bing.com https://in.hotjar.com https://*.trychameleon.com https://forms.hubspot.com https://eligibility.wootric.com https://stats.g.doubleclick.net https://www.google-analytics.com https://*.google-analytics.com https://*.spendesk.tools https://*.spendesk.com https://spx-staging-dev-i18n.s3.eu-west-1.amazonaws.com https://spx-production-i18n.s3.eu-west-1.amazonaws.com https://app.satismeter.com https://accounts.google.com https://px.ads.linkedin.com https://widgets.marqeta.com 'report-sample';script-src 'self' https://*.marqeta.com https://js.intercomcdn.com https://*.google-analytics.com https://cdn.wootric.com https://fast.trychameleon.com https://fastly.trychameleon.com https://widget.intercom.io https://cdn.mxpnl.com https://cdn.segment.com https://cdn.amplitude.com https://tracking.g2crowd.com https://scout-cdn.salesloft.com https://serve.albacross.com https://js.hsforms.net https://d3r43gyd9zmfep.cloudfront.net https://cdn-3.convertexperiments.com https://www.googleoptimize.com https://apis.google.com https://www.google.com https://accounts.google.com https://fullstory.com https://*.fullstory.com https://analytics.twitter.com https://bat.bing.com https://cdn.heapanalytics.com https://connect.facebook.net https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-banner.com https://*.hs-scripts.com https://js.hsleadflows.net https://script.hotjar.com https://snap.licdn.com https://static.ads-twitter.com https://static.hotjar.com https://www.googleadservices.com https://*.googletagmanager.com https://unpkg.com https://*.spendesk.com https://app.satismeter.com 'nonce-Cc2eT52C9axURLOYnFhim' 'report-sample';worker-src 'self' blob:;frame-ancestors 'self' https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com chrome-extension://dipeehgoehnglgojdgfmndjemdfepkeb https://*.marqeta.com https://app.storyblok.com https://www.spendesk.com;report-uri https://www.spendesk.com/security/report/csp;block-all-mixed-content
referrer-policy: origin-when-cross-origin
report-to: {"group":"csp-endpoint","max_age":63072000,"endpoints":[{"url":"https://www.spendesk.com/security/report/csp"}]}
x-dns-prefetch-control: off
x-frame-options: sameorigin
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8f088aaeef30b4fa-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| GET demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp | 172.67.214.148 | 200 OK | 8.3 kB |
URL User Request GET HTTP/2demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp IP172.67.214.148:443
CertificateIssuerGoogle Trust Services Subjectdemo.app.spendesk.com FingerprintFE:33:11:0A:E3:94:37:EA:6F:46:9F:23:65:54:E2:08:CC:3C:EA:AC ValidityThu, 31 Oct 2024 00:57:24 GMT - Wed, 29 Jan 2025 00:57:23 GMT
File typeHTML document, ASCII text, with very long lines (8838), with no line terminators Hasha46525415611fb4d9ac4fd89bc916e7b 337116cc9737f35ede0aecc0fe6bc74a8bccf8cd c8ee0a6c8d677230c65eeb341ab09074248cf1775221b4051ef8913836871074
GET /auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp HTTP/1.1
Host: demo.app.spendesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://demo.app.spendesk.com/app
DNT: 1
Connection: keep-alive
Cookie: spendeskDeviceUUID=ae1d273d-77ec-4d2d-a293-de2ddace1bc3
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 11 Dec 2024 21:24:27 GMT
content-type: text/html; charset=utf-8
cache-control: no-cache
content-security-policy: frame-ancestors 'self' https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com chrome-extension://dipeehgoehnglgojdgfmndjemdfepkeb https://*.marqeta.com https://app.storyblok.com https://www.spendesk.com
content-security-policy-report-only: connect-src 'self' https://demo.api.spendesk.com https://demo.spendesk.com https://logs.browser-intake-datadoghq.eu https://rum.browser-intake-datadoghq.eu https://browser-intake-datadoghq.eu https://api.segment.io https://cdn.segment.com https://api.amplitude.com https://api.storyblok.com https://api-js.mixpanel.com https://api-iam.intercom.io https://d3r43gyd9zmfep.cloudfront.net wss://nexus-websocket-a.intercom.io https://*.fullstory.com https://bat.bing.com https://in.hotjar.com https://*.trychameleon.com https://forms.hubspot.com https://eligibility.wootric.com https://stats.g.doubleclick.net https://www.google-analytics.com https://*.google-analytics.com https://*.spendesk.tools https://*.spendesk.com https://spx-staging-dev-i18n.s3.eu-west-1.amazonaws.com https://spx-production-i18n.s3.eu-west-1.amazonaws.com https://app.satismeter.com https://accounts.google.com https://px.ads.linkedin.com https://widgets.marqeta.com 'report-sample';script-src 'self' https://*.marqeta.com https://js.intercomcdn.com https://*.google-analytics.com https://cdn.wootric.com https://fast.trychameleon.com https://fastly.trychameleon.com https://widget.intercom.io https://cdn.mxpnl.com https://cdn.segment.com https://cdn.amplitude.com https://tracking.g2crowd.com https://scout-cdn.salesloft.com https://serve.albacross.com https://js.hsforms.net https://d3r43gyd9zmfep.cloudfront.net https://cdn-3.convertexperiments.com https://www.googleoptimize.com https://apis.google.com https://www.google.com https://accounts.google.com https://fullstory.com https://*.fullstory.com https://analytics.twitter.com https://bat.bing.com https://cdn.heapanalytics.com https://connect.facebook.net https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-banner.com https://*.hs-scripts.com https://js.hsleadflows.net https://script.hotjar.com https://snap.licdn.com https://static.ads-twitter.com https://static.hotjar.com https://www.googleadservices.com https://*.googletagmanager.com https://unpkg.com https://*.spendesk.com https://app.satismeter.com 'nonce-MbBs2ruGXPlt0GEzsWdR2' 'report-sample';worker-src 'self' blob:;frame-ancestors 'self' https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com chrome-extension://dipeehgoehnglgojdgfmndjemdfepkeb https://*.marqeta.com https://app.storyblok.com https://www.spendesk.com;report-uri https://www.spendesk.com/security/report/csp;block-all-mixed-content
referrer-policy: origin-when-cross-origin
report-to: {"group":"csp-endpoint","max_age":63072000,"endpoints":[{"url":"https://www.spendesk.com/security/report/csp"}]}
x-dns-prefetch-control: off
x-frame-options: sameorigin
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8f088aa50915b4fa-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| GET demo.app.spendesk.com/static/media/microsoft-logo.5d88bb2b4a34dbd68c50.svg | 172.67.214.148 | 200 OK | 228 B |
URL GET HTTP/2demo.app.spendesk.com/static/media/microsoft-logo.5d88bb2b4a34dbd68c50.svg IP172.67.214.148:443
Requested byhttps://demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp CertificateIssuerGoogle Trust Services Subjectdemo.app.spendesk.com FingerprintFE:33:11:0A:E3:94:37:EA:6F:46:9F:23:65:54:E2:08:CC:3C:EA:AC ValidityThu, 31 Oct 2024 00:57:24 GMT - Wed, 29 Jan 2025 00:57:23 GMT
File typeSVG Scalable Vector Graphics image Hash11fa2ade224b9cbcfa44540b407dd75c 0da44d12ff0cd636086869d71c89dfa6247f9420 0b0beba231316a4c6751e0f631e58db0284d706b69d170d9e2d8a2f47d4afa7a
GET /static/media/microsoft-logo.5d88bb2b4a34dbd68c50.svg HTTP/1.1
Host: demo.app.spendesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://demo.app.spendesk.com/static/css/auth.35e100a4.css
DNT: 1
Connection: keep-alive
Cookie: spendeskDeviceUUID=ae1d273d-77ec-4d2d-a293-de2ddace1bc3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 11 Dec 2024 21:24:29 GMT
content-type: image/svg+xml
cache-control: public, max-age=31536000, immutable
content-security-policy: frame-ancestors 'self' https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com chrome-extension://dipeehgoehnglgojdgfmndjemdfepkeb https://*.marqeta.com https://app.storyblok.com https://www.spendesk.com
content-security-policy-report-only: connect-src 'self' https://demo.api.spendesk.com https://demo.spendesk.com https://logs.browser-intake-datadoghq.eu https://rum.browser-intake-datadoghq.eu https://browser-intake-datadoghq.eu https://api.segment.io https://cdn.segment.com https://api.amplitude.com https://api.storyblok.com https://api-js.mixpanel.com https://api-iam.intercom.io https://d3r43gyd9zmfep.cloudfront.net wss://nexus-websocket-a.intercom.io https://*.fullstory.com https://bat.bing.com https://in.hotjar.com https://*.trychameleon.com https://forms.hubspot.com https://eligibility.wootric.com https://stats.g.doubleclick.net https://www.google-analytics.com https://*.google-analytics.com https://*.spendesk.tools https://*.spendesk.com https://spx-staging-dev-i18n.s3.eu-west-1.amazonaws.com https://spx-production-i18n.s3.eu-west-1.amazonaws.com https://app.satismeter.com https://accounts.google.com https://px.ads.linkedin.com https://widgets.marqeta.com 'report-sample';script-src 'self' https://*.marqeta.com https://js.intercomcdn.com https://*.google-analytics.com https://cdn.wootric.com https://fast.trychameleon.com https://fastly.trychameleon.com https://widget.intercom.io https://cdn.mxpnl.com https://cdn.segment.com https://cdn.amplitude.com https://tracking.g2crowd.com https://scout-cdn.salesloft.com https://serve.albacross.com https://js.hsforms.net https://d3r43gyd9zmfep.cloudfront.net https://cdn-3.convertexperiments.com https://www.googleoptimize.com https://apis.google.com https://www.google.com https://accounts.google.com https://fullstory.com https://*.fullstory.com https://analytics.twitter.com https://bat.bing.com https://cdn.heapanalytics.com https://connect.facebook.net https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-banner.com https://*.hs-scripts.com https://js.hsleadflows.net https://script.hotjar.com https://snap.licdn.com https://static.ads-twitter.com https://static.hotjar.com https://www.googleadservices.com https://*.googletagmanager.com https://unpkg.com https://*.spendesk.com https://app.satismeter.com 'nonce-0bGzMAVxzGwN7JsZhj4f-' 'report-sample';worker-src 'self' blob:;frame-ancestors 'self' https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com chrome-extension://dipeehgoehnglgojdgfmndjemdfepkeb https://*.marqeta.com https://app.storyblok.com https://www.spendesk.com;report-uri https://www.spendesk.com/security/report/csp;block-all-mixed-content
referrer-policy: origin-when-cross-origin
report-to: {"group":"csp-endpoint","max_age":63072000,"endpoints":[{"url":"https://www.spendesk.com/security/report/csp"}]}
x-dns-prefetch-control: off
x-frame-options: sameorigin
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8f088ab07957b4fa-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| GET demo.app.spendesk.com/static/media/saml-logo.e93509f473873a2b739b.svg | 172.67.214.148 | 200 OK | 483 B |
URL GET HTTP/2demo.app.spendesk.com/static/media/saml-logo.e93509f473873a2b739b.svg IP172.67.214.148:443
Requested byhttps://demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp CertificateIssuerGoogle Trust Services Subjectdemo.app.spendesk.com FingerprintFE:33:11:0A:E3:94:37:EA:6F:46:9F:23:65:54:E2:08:CC:3C:EA:AC ValidityThu, 31 Oct 2024 00:57:24 GMT - Wed, 29 Jan 2025 00:57:23 GMT
File typeSVG Scalable Vector Graphics image Hash6b13f835c67f17279b2c6f11e1f0c564 390b684da5711858c7ece92ee1c93269eeb9f4e1 1afbea34ce3c80e5edebbf658fa80480fedf5489ee09fdc8304ce22aefa415d4
GET /static/media/saml-logo.e93509f473873a2b739b.svg HTTP/1.1
Host: demo.app.spendesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://demo.app.spendesk.com/static/css/auth.35e100a4.css
DNT: 1
Connection: keep-alive
Cookie: spendeskDeviceUUID=ae1d273d-77ec-4d2d-a293-de2ddace1bc3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 11 Dec 2024 21:24:29 GMT
content-type: image/svg+xml
cache-control: public, max-age=31536000, immutable
content-security-policy: frame-ancestors 'self' https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com chrome-extension://dipeehgoehnglgojdgfmndjemdfepkeb https://*.marqeta.com https://app.storyblok.com https://www.spendesk.com
content-security-policy-report-only: connect-src 'self' https://demo.api.spendesk.com https://demo.spendesk.com https://logs.browser-intake-datadoghq.eu https://rum.browser-intake-datadoghq.eu https://browser-intake-datadoghq.eu https://api.segment.io https://cdn.segment.com https://api.amplitude.com https://api.storyblok.com https://api-js.mixpanel.com https://api-iam.intercom.io https://d3r43gyd9zmfep.cloudfront.net wss://nexus-websocket-a.intercom.io https://*.fullstory.com https://bat.bing.com https://in.hotjar.com https://*.trychameleon.com https://forms.hubspot.com https://eligibility.wootric.com https://stats.g.doubleclick.net https://www.google-analytics.com https://*.google-analytics.com https://*.spendesk.tools https://*.spendesk.com https://spx-staging-dev-i18n.s3.eu-west-1.amazonaws.com https://spx-production-i18n.s3.eu-west-1.amazonaws.com https://app.satismeter.com https://accounts.google.com https://px.ads.linkedin.com https://widgets.marqeta.com 'report-sample';script-src 'self' https://*.marqeta.com https://js.intercomcdn.com https://*.google-analytics.com https://cdn.wootric.com https://fast.trychameleon.com https://fastly.trychameleon.com https://widget.intercom.io https://cdn.mxpnl.com https://cdn.segment.com https://cdn.amplitude.com https://tracking.g2crowd.com https://scout-cdn.salesloft.com https://serve.albacross.com https://js.hsforms.net https://d3r43gyd9zmfep.cloudfront.net https://cdn-3.convertexperiments.com https://www.googleoptimize.com https://apis.google.com https://www.google.com https://accounts.google.com https://fullstory.com https://*.fullstory.com https://analytics.twitter.com https://bat.bing.com https://cdn.heapanalytics.com https://connect.facebook.net https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-banner.com https://*.hs-scripts.com https://js.hsleadflows.net https://script.hotjar.com https://snap.licdn.com https://static.ads-twitter.com https://static.hotjar.com https://www.googleadservices.com https://*.googletagmanager.com https://unpkg.com https://*.spendesk.com https://app.satismeter.com 'nonce-RZAjIds1y-TpKh2eth6-m' 'report-sample';worker-src 'self' blob:;frame-ancestors 'self' https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com chrome-extension://dipeehgoehnglgojdgfmndjemdfepkeb https://*.marqeta.com https://app.storyblok.com https://www.spendesk.com;report-uri https://www.spendesk.com/security/report/csp;block-all-mixed-content
referrer-policy: origin-when-cross-origin
report-to: {"group":"csp-endpoint","max_age":63072000,"endpoints":[{"url":"https://www.spendesk.com/security/report/csp"}]}
x-dns-prefetch-control: off
x-frame-options: sameorigin
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8f088ab07959b4fa-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| GET api.storyblok.com/v2/cdn/stories/app/auth-login?cv=1733933618&language=undefined&token=sQ9elN5jEMBD1tDyDVrpDQtt&version=published | 143.204.55.88 | 200 OK | 2.9 kB |
URL GET HTTP/2api.storyblok.com/v2/cdn/stories/app/auth-login?cv=1733933618&language=undefined&token=sQ9elN5jEMBD1tDyDVrpDQtt&version=published IP143.204.55.88:443
Requested byhttps://demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp CertificateIssuerAmazon Subject*.storyblok.com Fingerprint21:D0:E8:2F:D5:AC:D8:6C:D3:EE:89:60:59:F4:5F:2A:0A:36:84:AB ValidityFri, 30 Aug 2024 00:00:00 GMT - Sat, 27 Sep 2025 23:59:59 GMT
File typetroff or preprocessor input, Unicode text, UTF-8 text, with very long lines (3304), with no line terminators Hashfbaf9df4f983665093e3e2e059ce8925 d1137bebef6ba627e05f60c73fa2d69485497ea3 50a92cb7025703b062a7b8eae8b448f8d9a7e4447f182b1ad42333831d0a790b
GET /v2/cdn/stories/app/auth-login?cv=1733933618&language=undefined&token=sQ9elN5jEMBD1tDyDVrpDQtt&version=published HTTP/1.1
Host: api.storyblok.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://demo.app.spendesk.com
content-type: application/json
sb-agent: SB-JS-CLIENT
sb-agent-version: 5.14.2
Referer: https://demo.app.spendesk.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Wed, 11 Dec 2024 16:16:10 GMT
server: nginx/1.25.4
access-control-allow-origin: https://demo.app.spendesk.com
access-control-allow-methods: GET, POST, DELETE, PUT, PATCH, OPTIONS, HEAD
access-control-expose-headers: Api-Version, Token, Total, Per-Page
access-control-max-age: 7200
access-control-allow-credentials: true
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
cache-control: max-age=0, public, s-maxage=604800
etag: W/"0a00135c7d63bf7b44e71c998a857461"
sb-be-version: 2.69.0.B1
x-request-id: 38f6658b-01a6-4bd2-809a-f20de54dccb7
x-runtime: 0.053852
content-encoding: gzip
vary: Accept-Encoding,Origin
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: a4DDfWWP_nrt2HuShBvgLeiTfTmWtttOT13LF1V62HGEQxBbhzgLkA==
age: 18499
X-Firefox-Spdy: h2
|
|
| GET demo.app.spendesk.com/static/fonts/Patron/Patron-Medium.woff | 172.67.214.148 | 404 Not Found | 13 B |
URL GET HTTP/2demo.app.spendesk.com/static/fonts/Patron/Patron-Medium.woff IP172.67.214.148:443
Requested byhttps://demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp CertificateIssuerGoogle Trust Services Subjectdemo.app.spendesk.com FingerprintFE:33:11:0A:E3:94:37:EA:6F:46:9F:23:65:54:E2:08:CC:3C:EA:AC ValidityThu, 31 Oct 2024 00:57:24 GMT - Wed, 29 Jan 2025 00:57:23 GMT
File typeASCII text, with no line terminators Hash1e6cd917ed71a1241e4bedc29264bd98 5b65037351caeb0e5a48d963d7ffa88d0271d546 7d04f7431bbfa41a04bcc7e6b98b9de0d919756c4c671c5785c99fff45f16402
GET /static/fonts/Patron/Patron-Medium.woff HTTP/1.1
Host: demo.app.spendesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp
DNT: 1
Connection: keep-alive
Cookie: spendeskDeviceUUID=ae1d273d-77ec-4d2d-a293-de2ddace1bc3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Wed, 11 Dec 2024 21:24:27 GMT
content-type: text/plain; charset=UTF-8
content-length: 13
content-security-policy: frame-ancestors 'self' https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com chrome-extension://dipeehgoehnglgojdgfmndjemdfepkeb https://*.marqeta.com https://app.storyblok.com https://www.spendesk.com
content-security-policy-report-only: connect-src 'self' https://demo.api.spendesk.com https://demo.spendesk.com https://logs.browser-intake-datadoghq.eu https://rum.browser-intake-datadoghq.eu https://browser-intake-datadoghq.eu https://api.segment.io https://cdn.segment.com https://api.amplitude.com https://api.storyblok.com https://api-js.mixpanel.com https://api-iam.intercom.io https://d3r43gyd9zmfep.cloudfront.net wss://nexus-websocket-a.intercom.io https://*.fullstory.com https://bat.bing.com https://in.hotjar.com https://*.trychameleon.com https://forms.hubspot.com https://eligibility.wootric.com https://stats.g.doubleclick.net https://www.google-analytics.com https://*.google-analytics.com https://*.spendesk.tools https://*.spendesk.com https://spx-staging-dev-i18n.s3.eu-west-1.amazonaws.com https://spx-production-i18n.s3.eu-west-1.amazonaws.com https://app.satismeter.com https://accounts.google.com https://px.ads.linkedin.com https://widgets.marqeta.com 'report-sample';script-src 'self' https://*.marqeta.com https://js.intercomcdn.com https://*.google-analytics.com https://cdn.wootric.com https://fast.trychameleon.com https://fastly.trychameleon.com https://widget.intercom.io https://cdn.mxpnl.com https://cdn.segment.com https://cdn.amplitude.com https://tracking.g2crowd.com https://scout-cdn.salesloft.com https://serve.albacross.com https://js.hsforms.net https://d3r43gyd9zmfep.cloudfront.net https://cdn-3.convertexperiments.com https://www.googleoptimize.com https://apis.google.com https://www.google.com https://accounts.google.com https://fullstory.com https://*.fullstory.com https://analytics.twitter.com https://bat.bing.com https://cdn.heapanalytics.com https://connect.facebook.net https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-banner.com https://*.hs-scripts.com https://js.hsleadflows.net https://script.hotjar.com https://snap.licdn.com https://static.ads-twitter.com https://static.hotjar.com https://www.googleadservices.com https://*.googletagmanager.com https://unpkg.com https://*.spendesk.com https://app.satismeter.com 'nonce-gN29fFkGznQEX3lq26MYG' 'report-sample';worker-src 'self' blob:;frame-ancestors 'self' https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com chrome-extension://dipeehgoehnglgojdgfmndjemdfepkeb https://*.marqeta.com https://app.storyblok.com https://www.spendesk.com;report-uri https://www.spendesk.com/security/report/csp;block-all-mixed-content
referrer-policy: origin-when-cross-origin
report-to: {"group":"csp-endpoint","max_age":63072000,"endpoints":[{"url":"https://www.spendesk.com/security/report/csp"}]}
x-dns-prefetch-control: off
x-frame-options: sameorigin
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8f088aa68b39b4fa-OSL
X-Firefox-Spdy: h2
|
|
| GET cdn.segment.com/analytics-next/bundles/schemaFilter.bundle.5c2661f67b4b71a6d9bd.js | 143.204.48.96 | 200 OK | 1.6 kB |
URL GET HTTP/2cdn.segment.com/analytics-next/bundles/schemaFilter.bundle.5c2661f67b4b71a6d9bd.js IP143.204.48.96:443
Requested byhttps://demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp CertificateIssuerAmazon Subject*.segment.com Fingerprint68:FC:54:EF:11:C2:99:CE:81:58:5A:E2:9B:FD:C0:05:1B:8D:9D:B4 ValidityTue, 15 Oct 2024 00:00:00 GMT - Fri, 14 Nov 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (1580), with no line terminators Hash6e19b4ef2ab810cbea710a18b9497529 8b87132691b073aa3ef474eaa704138098abf3bd e8714289e7eb4b5686a2bffa5ec489305ec9f8da80596cad8e3b860eefaca9de
GET /analytics-next/bundles/schemaFilter.bundle.5c2661f67b4b71a6d9bd.js HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://demo.app.spendesk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 16 Apr 2024 18:49:27 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Tue, 16 Apr 2024 17:56:09 GMT
etag: W/"3867b2388b619ff7fddc29ef359fc9aa"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000,immutable
x-amz-version-id: SU5cfJE_W_axcjBRjaFnIrHGaL36mx5M
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: GQq8DdF_AsbhHmycE5blEzEEIlV2d8FNbUVZ3qYE5bVGCXAEaxKQnw==
age: 20658902
X-Firefox-Spdy: h2
|
|
| GET cdn.segment.com/next-integrations/integrations/vendor/commons.a61d7bea37d2de5d4b69.js.gz | 143.204.48.96 | 200 OK | 72 kB |
URL GET HTTP/2cdn.segment.com/next-integrations/integrations/vendor/commons.a61d7bea37d2de5d4b69.js.gz IP143.204.48.96:443
Requested byhttps://demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp CertificateIssuerAmazon Subject*.segment.com Fingerprint68:FC:54:EF:11:C2:99:CE:81:58:5A:E2:9B:FD:C0:05:1B:8D:9D:B4 ValidityTue, 15 Oct 2024 00:00:00 GMT - Fri, 14 Nov 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hasha6378a93e23b431232f76fc74dca8b18 51c28e605abfb910d4c836f58e96723141e28b30 265ac7549793e4b9d51f8ab19acc8518770ace94078790776b3ac34eb47e1bbd
GET /next-integrations/integrations/vendor/commons.a61d7bea37d2de5d4b69.js.gz HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://demo.app.spendesk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
content-length: 21911
date: Fri, 12 Apr 2024 19:17:49 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Fri, 05 Apr 2024 16:42:46 GMT
etag: "c467a63b2e7c3a99be423ace649014d8"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000,immutable
content-encoding: gzip
x-amz-version-id: 1Y99HfuTczPsGIDdcPhw1L1EusEviR19
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: E9EK2gLdiNzU2PRL3EdJVDO7iVAillGcqnNT5rIrC7RjeZYR-qJ3lQ==
age: 21002801
X-Firefox-Spdy: h2
|
|
| GET demo.app.spendesk.com/static/js/auth.f0053daf.js | 172.67.214.148 | 200 OK | 212 kB |
URL GET HTTP/2demo.app.spendesk.com/static/js/auth.f0053daf.js IP172.67.214.148:443
Requested byhttps://demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp CertificateIssuerGoogle Trust Services Subjectdemo.app.spendesk.com FingerprintFE:33:11:0A:E3:94:37:EA:6F:46:9F:23:65:54:E2:08:CC:3C:EA:AC ValidityThu, 31 Oct 2024 00:57:24 GMT - Wed, 29 Jan 2025 00:57:23 GMT
Size212 kB (212405 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static/js/auth.f0053daf.js HTTP/1.1
Host: demo.app.spendesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp
DNT: 1
Connection: keep-alive
Cookie: spendeskDeviceUUID=ae1d273d-77ec-4d2d-a293-de2ddace1bc3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 11 Dec 2024 21:24:27 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
content-security-policy: frame-ancestors 'self' https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com chrome-extension://dipeehgoehnglgojdgfmndjemdfepkeb https://*.marqeta.com https://app.storyblok.com https://www.spendesk.com
content-security-policy-report-only: connect-src 'self' https://demo.api.spendesk.com https://demo.spendesk.com https://logs.browser-intake-datadoghq.eu https://rum.browser-intake-datadoghq.eu https://browser-intake-datadoghq.eu https://api.segment.io https://cdn.segment.com https://api.amplitude.com https://api.storyblok.com https://api-js.mixpanel.com https://api-iam.intercom.io https://d3r43gyd9zmfep.cloudfront.net wss://nexus-websocket-a.intercom.io https://*.fullstory.com https://bat.bing.com https://in.hotjar.com https://*.trychameleon.com https://forms.hubspot.com https://eligibility.wootric.com https://stats.g.doubleclick.net https://www.google-analytics.com https://*.google-analytics.com https://*.spendesk.tools https://*.spendesk.com https://spx-staging-dev-i18n.s3.eu-west-1.amazonaws.com https://spx-production-i18n.s3.eu-west-1.amazonaws.com https://app.satismeter.com https://accounts.google.com https://px.ads.linkedin.com https://widgets.marqeta.com 'report-sample';script-src 'self' https://*.marqeta.com https://js.intercomcdn.com https://*.google-analytics.com https://cdn.wootric.com https://fast.trychameleon.com https://fastly.trychameleon.com https://widget.intercom.io https://cdn.mxpnl.com https://cdn.segment.com https://cdn.amplitude.com https://tracking.g2crowd.com https://scout-cdn.salesloft.com https://serve.albacross.com https://js.hsforms.net https://d3r43gyd9zmfep.cloudfront.net https://cdn-3.convertexperiments.com https://www.googleoptimize.com https://apis.google.com https://www.google.com https://accounts.google.com https://fullstory.com https://*.fullstory.com https://analytics.twitter.com https://bat.bing.com https://cdn.heapanalytics.com https://connect.facebook.net https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-banner.com https://*.hs-scripts.com https://js.hsleadflows.net https://script.hotjar.com https://snap.licdn.com https://static.ads-twitter.com https://static.hotjar.com https://www.googleadservices.com https://*.googletagmanager.com https://unpkg.com https://*.spendesk.com https://app.satismeter.com 'nonce-IvbUv9cJ3b-ceFXDpSaQD' 'report-sample';worker-src 'self' blob:;frame-ancestors 'self' https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com chrome-extension://dipeehgoehnglgojdgfmndjemdfepkeb https://*.marqeta.com https://app.storyblok.com https://www.spendesk.com;report-uri https://www.spendesk.com/security/report/csp;block-all-mixed-content
referrer-policy: origin-when-cross-origin
report-to: {"group":"csp-endpoint","max_age":63072000,"endpoints":[{"url":"https://www.spendesk.com/security/report/csp"}]}
x-dns-prefetch-control: off
x-frame-options: sameorigin
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8f088aa68b4cb4fa-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| OPTIONS api.storyblok.com/v2/cdn/stories/app/auth-login?cv=1733933618&language=undefined&token=sQ9elN5jEMBD1tDyDVrpDQtt&version=published | 143.204.55.88 | 200 OK | 0 B |
URL OPTIONS HTTP/2api.storyblok.com/v2/cdn/stories/app/auth-login?cv=1733933618&language=undefined&token=sQ9elN5jEMBD1tDyDVrpDQtt&version=published IP143.204.55.88:443
Requested byhttps://demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp CertificateIssuerAmazon Subject*.storyblok.com Fingerprint21:D0:E8:2F:D5:AC:D8:6C:D3:EE:89:60:59:F4:5F:2A:0A:36:84:AB ValidityFri, 30 Aug 2024 00:00:00 GMT - Sat, 27 Sep 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /v2/cdn/stories/app/auth-login?cv=1733933618&language=undefined&token=sQ9elN5jEMBD1tDyDVrpDQtt&version=published HTTP/1.1
Host: api.storyblok.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type,sb-agent,sb-agent-version
Referer: https://demo.app.spendesk.com/
Origin: https://demo.app.spendesk.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 11 Dec 2024 21:24:29 GMT
server: nginx/1.25.4
access-control-allow-origin: https://demo.app.spendesk.com
access-control-allow-methods: GET, POST, DELETE, PUT, PATCH, OPTIONS, HEAD
access-control-expose-headers: Api-Version, Token, Total, Per-Page
access-control-max-age: 7200
access-control-allow-credentials: true
access-control-allow-headers: content-type,sb-agent,sb-agent-version
x-cache: Miss from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 3FTtHhxTJ2XCksr5GRZeDY-UkaxtGsdFO8V8uxOZVM14niwfwhvp1g==
X-Firefox-Spdy: h2
|
|
| GET demo.app.spendesk.com/static/lang/en/countries.f0ea1c1d.json | 172.67.214.148 | 200 OK | 7.2 kB |
URL GET HTTP/2demo.app.spendesk.com/static/lang/en/countries.f0ea1c1d.json IP172.67.214.148:443
Requested byhttps://demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp CertificateIssuerGoogle Trust Services Subjectdemo.app.spendesk.com FingerprintFE:33:11:0A:E3:94:37:EA:6F:46:9F:23:65:54:E2:08:CC:3C:EA:AC ValidityThu, 31 Oct 2024 00:57:24 GMT - Wed, 29 Jan 2025 00:57:23 GMT
File typeUnicode text, UTF-8 text, with very long lines (8386), with no line terminators Hash5f696c63aee54750c058d29a7f228f5c 12ebe0159121288cb834861b69b235237fbdccbb 2713de42ce7155b7adbce3d5734ecef26aa39daa06c658920a82070cff2d9859
GET /static/lang/en/countries.f0ea1c1d.json HTTP/1.1
Host: demo.app.spendesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp
DNT: 1
Connection: keep-alive
Cookie: spendeskDeviceUUID=ae1d273d-77ec-4d2d-a293-de2ddace1bc3
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 11 Dec 2024 21:24:28 GMT
content-type: application/json; charset=utf-8
cache-control: public, max-age=31536000, immutable
content-security-policy: frame-ancestors 'self' https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com chrome-extension://dipeehgoehnglgojdgfmndjemdfepkeb https://*.marqeta.com https://app.storyblok.com https://www.spendesk.com
content-security-policy-report-only: connect-src 'self' https://demo.api.spendesk.com https://demo.spendesk.com https://logs.browser-intake-datadoghq.eu https://rum.browser-intake-datadoghq.eu https://browser-intake-datadoghq.eu https://api.segment.io https://cdn.segment.com https://api.amplitude.com https://api.storyblok.com https://api-js.mixpanel.com https://api-iam.intercom.io https://d3r43gyd9zmfep.cloudfront.net wss://nexus-websocket-a.intercom.io https://*.fullstory.com https://bat.bing.com https://in.hotjar.com https://*.trychameleon.com https://forms.hubspot.com https://eligibility.wootric.com https://stats.g.doubleclick.net https://www.google-analytics.com https://*.google-analytics.com https://*.spendesk.tools https://*.spendesk.com https://spx-staging-dev-i18n.s3.eu-west-1.amazonaws.com https://spx-production-i18n.s3.eu-west-1.amazonaws.com https://app.satismeter.com https://accounts.google.com https://px.ads.linkedin.com https://widgets.marqeta.com 'report-sample';script-src 'self' https://*.marqeta.com https://js.intercomcdn.com https://*.google-analytics.com https://cdn.wootric.com https://fast.trychameleon.com https://fastly.trychameleon.com https://widget.intercom.io https://cdn.mxpnl.com https://cdn.segment.com https://cdn.amplitude.com https://tracking.g2crowd.com https://scout-cdn.salesloft.com https://serve.albacross.com https://js.hsforms.net https://d3r43gyd9zmfep.cloudfront.net https://cdn-3.convertexperiments.com https://www.googleoptimize.com https://apis.google.com https://www.google.com https://accounts.google.com https://fullstory.com https://*.fullstory.com https://analytics.twitter.com https://bat.bing.com https://cdn.heapanalytics.com https://connect.facebook.net https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-banner.com https://*.hs-scripts.com https://js.hsleadflows.net https://script.hotjar.com https://snap.licdn.com https://static.ads-twitter.com https://static.hotjar.com https://www.googleadservices.com https://*.googletagmanager.com https://unpkg.com https://*.spendesk.com https://app.satismeter.com 'nonce-IF1NDeONnSUwuyDqdbVcD' 'report-sample';worker-src 'self' blob:;frame-ancestors 'self' https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com chrome-extension://dipeehgoehnglgojdgfmndjemdfepkeb https://*.marqeta.com https://app.storyblok.com https://www.spendesk.com;report-uri https://www.spendesk.com/security/report/csp;block-all-mixed-content
referrer-policy: origin-when-cross-origin
report-to: {"group":"csp-endpoint","max_age":63072000,"endpoints":[{"url":"https://www.spendesk.com/security/report/csp"}]}
x-dns-prefetch-control: off
x-frame-options: sameorigin
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8f088aaeef34b4fa-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| GET demo.app.spendesk.com/static/media/mobileZenIcon.8f25fbfb00e5dea98d7feb53646eac3c.svg | 0.0.0.0 | | 0 B |
URL GET demo.app.spendesk.com/static/media/mobileZenIcon.8f25fbfb00e5dea98d7feb53646eac3c.svg IP0.0.0.0:0
Requested byhttps://demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp CertificateIssuerGoogle Trust Services Subjectdemo.app.spendesk.com FingerprintFE:33:11:0A:E3:94:37:EA:6F:46:9F:23:65:54:E2:08:CC:3C:EA:AC ValidityThu, 31 Oct 2024 00:57:24 GMT - Wed, 29 Jan 2025 00:57:23 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static/media/mobileZenIcon.8f25fbfb00e5dea98d7feb53646eac3c.svg HTTP/1.1
Host: demo.app.spendesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp
DNT: 1
Connection: keep-alive
Cookie: spendeskDeviceUUID=ae1d273d-77ec-4d2d-a293-de2ddace1bc3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
|
|
| GET cdn.segment.com/next-integrations/integrations/intercom/3.1.0/intercom.dynamic.js.gz | 143.204.48.96 | 200 OK | 4.3 kB |
URL GET HTTP/2cdn.segment.com/next-integrations/integrations/intercom/3.1.0/intercom.dynamic.js.gz IP143.204.48.96:443
Requested byhttps://demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp CertificateIssuerAmazon Subject*.segment.com Fingerprint68:FC:54:EF:11:C2:99:CE:81:58:5A:E2:9B:FD:C0:05:1B:8D:9D:B4 ValidityTue, 15 Oct 2024 00:00:00 GMT - Fri, 14 Nov 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (4395), with no line terminators Hashb365670f1e8a349c6da3fa7d0ea30da3 7d309196154747d3a013c8e4141bda9ad62f6258 28ea368239205aa249c5d7c62166552c4d3cde37e07a329f54ed4613f5e360da
GET /next-integrations/integrations/intercom/3.1.0/intercom.dynamic.js.gz HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://demo.app.spendesk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
content-length: 1879
date: Sun, 22 Sep 2024 06:02:26 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Thu, 08 Aug 2024 06:57:15 GMT
etag: "de0a11b95aca20dc7cc5bcec42adc9e4"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000,immutable
content-encoding: gzip
x-amz-version-id: j67GzrwypZO.IiYLO2EsjNPfMBGAotaw
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: B4roK2cZAkUWxfrnpdRp39mSKyc9xojkjkk2GoAe0I5iAjucViFOvA==
age: 6967324
X-Firefox-Spdy: h2
|
|
| GET demo.app.spendesk.com/static/js/segment.js | 172.67.214.148 | 200 OK | 1.7 kB |
URL GET HTTP/2demo.app.spendesk.com/static/js/segment.js IP172.67.214.148:443
Requested byhttps://demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp CertificateIssuerGoogle Trust Services Subjectdemo.app.spendesk.com FingerprintFE:33:11:0A:E3:94:37:EA:6F:46:9F:23:65:54:E2:08:CC:3C:EA:AC ValidityThu, 31 Oct 2024 00:57:24 GMT - Wed, 29 Jan 2025 00:57:23 GMT
File typeASCII text, with very long lines (1804), with no line terminators Hash391c6a6085931f76da147800641b5bb6 2d90a5ec31eb28eb259118c36035f89da22f36fb af869745dfa20273dde9279696bbb12cef5928522817d1ada46c8b239414b0ba
GET /static/js/segment.js HTTP/1.1
Host: demo.app.spendesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp
DNT: 1
Connection: keep-alive
Cookie: spendeskDeviceUUID=ae1d273d-77ec-4d2d-a293-de2ddace1bc3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 11 Dec 2024 21:24:27 GMT
content-type: application/javascript; charset=utf-8
cache-control: no-cache
content-security-policy: frame-ancestors 'self' https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com chrome-extension://dipeehgoehnglgojdgfmndjemdfepkeb https://*.marqeta.com https://app.storyblok.com https://www.spendesk.com
content-security-policy-report-only: connect-src 'self' https://demo.api.spendesk.com https://demo.spendesk.com https://logs.browser-intake-datadoghq.eu https://rum.browser-intake-datadoghq.eu https://browser-intake-datadoghq.eu https://api.segment.io https://cdn.segment.com https://api.amplitude.com https://api.storyblok.com https://api-js.mixpanel.com https://api-iam.intercom.io https://d3r43gyd9zmfep.cloudfront.net wss://nexus-websocket-a.intercom.io https://*.fullstory.com https://bat.bing.com https://in.hotjar.com https://*.trychameleon.com https://forms.hubspot.com https://eligibility.wootric.com https://stats.g.doubleclick.net https://www.google-analytics.com https://*.google-analytics.com https://*.spendesk.tools https://*.spendesk.com https://spx-staging-dev-i18n.s3.eu-west-1.amazonaws.com https://spx-production-i18n.s3.eu-west-1.amazonaws.com https://app.satismeter.com https://accounts.google.com https://px.ads.linkedin.com https://widgets.marqeta.com 'report-sample';script-src 'self' https://*.marqeta.com https://js.intercomcdn.com https://*.google-analytics.com https://cdn.wootric.com https://fast.trychameleon.com https://fastly.trychameleon.com https://widget.intercom.io https://cdn.mxpnl.com https://cdn.segment.com https://cdn.amplitude.com https://tracking.g2crowd.com https://scout-cdn.salesloft.com https://serve.albacross.com https://js.hsforms.net https://d3r43gyd9zmfep.cloudfront.net https://cdn-3.convertexperiments.com https://www.googleoptimize.com https://apis.google.com https://www.google.com https://accounts.google.com https://fullstory.com https://*.fullstory.com https://analytics.twitter.com https://bat.bing.com https://cdn.heapanalytics.com https://connect.facebook.net https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-banner.com https://*.hs-scripts.com https://js.hsleadflows.net https://script.hotjar.com https://snap.licdn.com https://static.ads-twitter.com https://static.hotjar.com https://www.googleadservices.com https://*.googletagmanager.com https://unpkg.com https://*.spendesk.com https://app.satismeter.com 'nonce-EZbitNSknm2g6NSw-QStP' 'report-sample';worker-src 'self' blob:;frame-ancestors 'self' https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com chrome-extension://dipeehgoehnglgojdgfmndjemdfepkeb https://*.marqeta.com https://app.storyblok.com https://www.spendesk.com;report-uri https://www.spendesk.com/security/report/csp;block-all-mixed-content
referrer-policy: origin-when-cross-origin
report-to: {"group":"csp-endpoint","max_age":63072000,"endpoints":[{"url":"https://www.spendesk.com/security/report/csp"}]}
x-dns-prefetch-control: off
x-frame-options: sameorigin
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8f088aa68b3ab4fa-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| GET demo.app.spendesk.com/static/js/runtime~auth.3e42b6a3.js | 172.67.214.148 | 200 OK | 2.0 kB |
URL GET HTTP/2demo.app.spendesk.com/static/js/runtime~auth.3e42b6a3.js IP172.67.214.148:443
Requested byhttps://demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp CertificateIssuerGoogle Trust Services Subjectdemo.app.spendesk.com FingerprintFE:33:11:0A:E3:94:37:EA:6F:46:9F:23:65:54:E2:08:CC:3C:EA:AC ValidityThu, 31 Oct 2024 00:57:24 GMT - Wed, 29 Jan 2025 00:57:23 GMT
File typeJavaScript source, ASCII text, with very long lines (2058), with no line terminators Hashaa93a84ae047edb02274a529eb9018c5 9680d14c6ef2510c4303cb6181de07aa3927e004 b4cf87d5442caba7136e21d837c32330d67fd37a8e20a06c0574608f7dec10dc
GET /static/js/runtime~auth.3e42b6a3.js HTTP/1.1
Host: demo.app.spendesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp
DNT: 1
Connection: keep-alive
Cookie: spendeskDeviceUUID=ae1d273d-77ec-4d2d-a293-de2ddace1bc3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 11 Dec 2024 21:24:27 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
content-security-policy: frame-ancestors 'self' https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com chrome-extension://dipeehgoehnglgojdgfmndjemdfepkeb https://*.marqeta.com https://app.storyblok.com https://www.spendesk.com
content-security-policy-report-only: connect-src 'self' https://demo.api.spendesk.com https://demo.spendesk.com https://logs.browser-intake-datadoghq.eu https://rum.browser-intake-datadoghq.eu https://browser-intake-datadoghq.eu https://api.segment.io https://cdn.segment.com https://api.amplitude.com https://api.storyblok.com https://api-js.mixpanel.com https://api-iam.intercom.io https://d3r43gyd9zmfep.cloudfront.net wss://nexus-websocket-a.intercom.io https://*.fullstory.com https://bat.bing.com https://in.hotjar.com https://*.trychameleon.com https://forms.hubspot.com https://eligibility.wootric.com https://stats.g.doubleclick.net https://www.google-analytics.com https://*.google-analytics.com https://*.spendesk.tools https://*.spendesk.com https://spx-staging-dev-i18n.s3.eu-west-1.amazonaws.com https://spx-production-i18n.s3.eu-west-1.amazonaws.com https://app.satismeter.com https://accounts.google.com https://px.ads.linkedin.com https://widgets.marqeta.com 'report-sample';script-src 'self' https://*.marqeta.com https://js.intercomcdn.com https://*.google-analytics.com https://cdn.wootric.com https://fast.trychameleon.com https://fastly.trychameleon.com https://widget.intercom.io https://cdn.mxpnl.com https://cdn.segment.com https://cdn.amplitude.com https://tracking.g2crowd.com https://scout-cdn.salesloft.com https://serve.albacross.com https://js.hsforms.net https://d3r43gyd9zmfep.cloudfront.net https://cdn-3.convertexperiments.com https://www.googleoptimize.com https://apis.google.com https://www.google.com https://accounts.google.com https://fullstory.com https://*.fullstory.com https://analytics.twitter.com https://bat.bing.com https://cdn.heapanalytics.com https://connect.facebook.net https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-banner.com https://*.hs-scripts.com https://js.hsleadflows.net https://script.hotjar.com https://snap.licdn.com https://static.ads-twitter.com https://static.hotjar.com https://www.googleadservices.com https://*.googletagmanager.com https://unpkg.com https://*.spendesk.com https://app.satismeter.com 'nonce-kFyjJQfPc8tJ3Pom0P676' 'report-sample';worker-src 'self' blob:;frame-ancestors 'self' https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com chrome-extension://dipeehgoehnglgojdgfmndjemdfepkeb https://*.marqeta.com https://app.storyblok.com https://www.spendesk.com;report-uri https://www.spendesk.com/security/report/csp;block-all-mixed-content
referrer-policy: origin-when-cross-origin
report-to: {"group":"csp-endpoint","max_age":63072000,"endpoints":[{"url":"https://www.spendesk.com/security/report/csp"}]}
x-dns-prefetch-control: off
x-frame-options: sameorigin
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8f088aa68b41b4fa-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| GET cdn.segment.com/analytics.js/v1/TSAxLekhmUq4T9ssyyMEsmYFhMEOVezM/analytics.min.js | 143.204.48.96 | 200 OK | 108 kB |
URL GET HTTP/2cdn.segment.com/analytics.js/v1/TSAxLekhmUq4T9ssyyMEsmYFhMEOVezM/analytics.min.js IP143.204.48.96:443
Requested byhttps://demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp CertificateIssuerAmazon Subject*.segment.com Fingerprint68:FC:54:EF:11:C2:99:CE:81:58:5A:E2:9B:FD:C0:05:1B:8D:9D:B4 ValidityTue, 15 Oct 2024 00:00:00 GMT - Fri, 14 Nov 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size108 kB (108191 bytes) Hash0ef4027b65140b585133025ee434f1d1 3c74a7b81af5944d081f5fba8ff65575debfe477 20d2cd173b12213ce2380c966ce2e69eca86172080090125978a3f4970540e37
GET /analytics.js/v1/TSAxLekhmUq4T9ssyyMEsmYFhMEOVezM/analytics.min.js HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://demo.app.spendesk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Wed, 13 Nov 2024 20:55:27 GMT
server: AmazonS3
x-amz-server-side-encryption: AES256
x-amz-version-id: 6Kkgpd4dAb_iBLcJx7DdMxihUgyedR7z
content-encoding: br
date: Wed, 11 Dec 2024 21:24:30 GMT
cache-control: public, max-age=120
etag: W/"0ef4027b65140b585133025ee434f1d1"
vary: accept-encoding
x-cache: RefreshHit from cloudfront
via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: aWOpwlR-7pufyFVhlaWEvGFctC-luNtzBjB1xj82a2eFoNGcHNrgLw==
X-Firefox-Spdy: h2
|
|
| GET demo.app.spendesk.com/static/lang/en/global.eaf4c087.json | 172.67.214.148 | 200 OK | 814 kB |
URL GET HTTP/2demo.app.spendesk.com/static/lang/en/global.eaf4c087.json IP172.67.214.148:443
Requested byhttps://demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp CertificateIssuerGoogle Trust Services Subjectdemo.app.spendesk.com FingerprintFE:33:11:0A:E3:94:37:EA:6F:46:9F:23:65:54:E2:08:CC:3C:EA:AC ValidityThu, 31 Oct 2024 00:57:24 GMT - Wed, 29 Jan 2025 00:57:23 GMT
Size814 kB (813507 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static/lang/en/global.eaf4c087.json HTTP/1.1
Host: demo.app.spendesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp
DNT: 1
Connection: keep-alive
Cookie: spendeskDeviceUUID=ae1d273d-77ec-4d2d-a293-de2ddace1bc3
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 11 Dec 2024 21:24:28 GMT
content-type: application/json; charset=utf-8
cache-control: public, max-age=31536000, immutable
content-security-policy: frame-ancestors 'self' https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com chrome-extension://dipeehgoehnglgojdgfmndjemdfepkeb https://*.marqeta.com https://app.storyblok.com https://www.spendesk.com
content-security-policy-report-only: connect-src 'self' https://demo.api.spendesk.com https://demo.spendesk.com https://logs.browser-intake-datadoghq.eu https://rum.browser-intake-datadoghq.eu https://browser-intake-datadoghq.eu https://api.segment.io https://cdn.segment.com https://api.amplitude.com https://api.storyblok.com https://api-js.mixpanel.com https://api-iam.intercom.io https://d3r43gyd9zmfep.cloudfront.net wss://nexus-websocket-a.intercom.io https://*.fullstory.com https://bat.bing.com https://in.hotjar.com https://*.trychameleon.com https://forms.hubspot.com https://eligibility.wootric.com https://stats.g.doubleclick.net https://www.google-analytics.com https://*.google-analytics.com https://*.spendesk.tools https://*.spendesk.com https://spx-staging-dev-i18n.s3.eu-west-1.amazonaws.com https://spx-production-i18n.s3.eu-west-1.amazonaws.com https://app.satismeter.com https://accounts.google.com https://px.ads.linkedin.com https://widgets.marqeta.com 'report-sample';script-src 'self' https://*.marqeta.com https://js.intercomcdn.com https://*.google-analytics.com https://cdn.wootric.com https://fast.trychameleon.com https://fastly.trychameleon.com https://widget.intercom.io https://cdn.mxpnl.com https://cdn.segment.com https://cdn.amplitude.com https://tracking.g2crowd.com https://scout-cdn.salesloft.com https://serve.albacross.com https://js.hsforms.net https://d3r43gyd9zmfep.cloudfront.net https://cdn-3.convertexperiments.com https://www.googleoptimize.com https://apis.google.com https://www.google.com https://accounts.google.com https://fullstory.com https://*.fullstory.com https://analytics.twitter.com https://bat.bing.com https://cdn.heapanalytics.com https://connect.facebook.net https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-banner.com https://*.hs-scripts.com https://js.hsleadflows.net https://script.hotjar.com https://snap.licdn.com https://static.ads-twitter.com https://static.hotjar.com https://www.googleadservices.com https://*.googletagmanager.com https://unpkg.com https://*.spendesk.com https://app.satismeter.com 'nonce--XVDx-ilnfI9flKQnsN-3' 'report-sample';worker-src 'self' blob:;frame-ancestors 'self' https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com chrome-extension://dipeehgoehnglgojdgfmndjemdfepkeb https://*.marqeta.com https://app.storyblok.com https://www.spendesk.com;report-uri https://www.spendesk.com/security/report/csp;block-all-mixed-content
referrer-policy: origin-when-cross-origin
report-to: {"group":"csp-endpoint","max_age":63072000,"endpoints":[{"url":"https://www.spendesk.com/security/report/csp"}]}
x-dns-prefetch-control: off
x-frame-options: sameorigin
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8f088aaeff3fb4fa-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| GET demo.app.spendesk.com/static/img/logo-chevrons-purple.svg | 172.67.214.148 | 200 OK | 781 B |
URL GET HTTP/2demo.app.spendesk.com/static/img/logo-chevrons-purple.svg IP172.67.214.148:443
Requested byhttps://demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp CertificateIssuerGoogle Trust Services Subjectdemo.app.spendesk.com FingerprintFE:33:11:0A:E3:94:37:EA:6F:46:9F:23:65:54:E2:08:CC:3C:EA:AC ValidityThu, 31 Oct 2024 00:57:24 GMT - Wed, 29 Jan 2025 00:57:23 GMT
File typeSVG Scalable Vector Graphics image Hash29108a5d6dd9cbc04a7008ed4decb5c6 bb2433faff5b8583308c6c363e3a76d186340d0f a39c1bf67a29d228f034096867cb77d42dbc22bc1d7a199f2cd6269ee74d0706
GET /static/img/logo-chevrons-purple.svg HTTP/1.1
Host: demo.app.spendesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp
DNT: 1
Connection: keep-alive
Cookie: spendeskDeviceUUID=ae1d273d-77ec-4d2d-a293-de2ddace1bc3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 11 Dec 2024 21:24:29 GMT
content-type: image/svg+xml
cache-control: no-cache
content-security-policy: frame-ancestors 'self' https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com chrome-extension://dipeehgoehnglgojdgfmndjemdfepkeb https://*.marqeta.com https://app.storyblok.com https://www.spendesk.com
content-security-policy-report-only: connect-src 'self' https://demo.api.spendesk.com https://demo.spendesk.com https://logs.browser-intake-datadoghq.eu https://rum.browser-intake-datadoghq.eu https://browser-intake-datadoghq.eu https://api.segment.io https://cdn.segment.com https://api.amplitude.com https://api.storyblok.com https://api-js.mixpanel.com https://api-iam.intercom.io https://d3r43gyd9zmfep.cloudfront.net wss://nexus-websocket-a.intercom.io https://*.fullstory.com https://bat.bing.com https://in.hotjar.com https://*.trychameleon.com https://forms.hubspot.com https://eligibility.wootric.com https://stats.g.doubleclick.net https://www.google-analytics.com https://*.google-analytics.com https://*.spendesk.tools https://*.spendesk.com https://spx-staging-dev-i18n.s3.eu-west-1.amazonaws.com https://spx-production-i18n.s3.eu-west-1.amazonaws.com https://app.satismeter.com https://accounts.google.com https://px.ads.linkedin.com https://widgets.marqeta.com 'report-sample';script-src 'self' https://*.marqeta.com https://js.intercomcdn.com https://*.google-analytics.com https://cdn.wootric.com https://fast.trychameleon.com https://fastly.trychameleon.com https://widget.intercom.io https://cdn.mxpnl.com https://cdn.segment.com https://cdn.amplitude.com https://tracking.g2crowd.com https://scout-cdn.salesloft.com https://serve.albacross.com https://js.hsforms.net https://d3r43gyd9zmfep.cloudfront.net https://cdn-3.convertexperiments.com https://www.googleoptimize.com https://apis.google.com https://www.google.com https://accounts.google.com https://fullstory.com https://*.fullstory.com https://analytics.twitter.com https://bat.bing.com https://cdn.heapanalytics.com https://connect.facebook.net https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-banner.com https://*.hs-scripts.com https://js.hsleadflows.net https://script.hotjar.com https://snap.licdn.com https://static.ads-twitter.com https://static.hotjar.com https://www.googleadservices.com https://*.googletagmanager.com https://unpkg.com https://*.spendesk.com https://app.satismeter.com 'nonce-ivvMCCj0aKhojZij8Hqek' 'report-sample';worker-src 'self' blob:;frame-ancestors 'self' https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com chrome-extension://dipeehgoehnglgojdgfmndjemdfepkeb https://*.marqeta.com https://app.storyblok.com https://www.spendesk.com;report-uri https://www.spendesk.com/security/report/csp;block-all-mixed-content
referrer-policy: origin-when-cross-origin
report-to: {"group":"csp-endpoint","max_age":63072000,"endpoints":[{"url":"https://www.spendesk.com/security/report/csp"}]}
x-dns-prefetch-control: off
x-frame-options: sameorigin
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8f088ab0693cb4fa-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| GET unpkg.com/@segment/consent-manager@5.4.0/standalone/consent-manager.js | 104.17.247.203 | 200 OK | 165 kB |
URL GET HTTP/2unpkg.com/@segment/consent-manager@5.4.0/standalone/consent-manager.js IP104.17.247.203:443
Requested byhttps://demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp CertificateIssuerGoogle Trust Services Subjectunpkg.com Fingerprint55:F7:12:1C:45:DD:C3:DF:92:D5:D7:DB:17:9D:F2:78:B2:CF:FF:E1 ValiditySat, 23 Nov 2024 09:43:46 GMT - Fri, 21 Feb 2025 09:43:45 GMT
Size165 kB (164667 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /@segment/consent-manager@5.4.0/standalone/consent-manager.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://demo.app.spendesk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 11 Dec 2024 21:24:28 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
content-encoding: br
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: "2833b-zeujLhifXIcH9/QeVt0Iz3L5vFw"
via: 1.1 fly.io
fly-request-id: 01J216FB9B0QYC0K620742HGT3-arn
cf-cache-status: HIT
age: 13777515
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8f088ab0cfdeb4f7-OSL
X-Firefox-Spdy: h2
|
|
| GET demo.app.spendesk.com/static/js/vendors.auth.a701d4e5.js | 172.67.214.148 | 200 OK | 1.7 MB |
URL GET HTTP/2demo.app.spendesk.com/static/js/vendors.auth.a701d4e5.js IP172.67.214.148:443
Requested byhttps://demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp CertificateIssuerGoogle Trust Services Subjectdemo.app.spendesk.com FingerprintFE:33:11:0A:E3:94:37:EA:6F:46:9F:23:65:54:E2:08:CC:3C:EA:AC ValidityThu, 31 Oct 2024 00:57:24 GMT - Wed, 29 Jan 2025 00:57:23 GMT
Size1.7 MB (1654726 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static/js/vendors.auth.a701d4e5.js HTTP/1.1
Host: demo.app.spendesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp
DNT: 1
Connection: keep-alive
Cookie: spendeskDeviceUUID=ae1d273d-77ec-4d2d-a293-de2ddace1bc3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 11 Dec 2024 21:24:27 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
content-security-policy: frame-ancestors 'self' https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com chrome-extension://dipeehgoehnglgojdgfmndjemdfepkeb https://*.marqeta.com https://app.storyblok.com https://www.spendesk.com
content-security-policy-report-only: connect-src 'self' https://demo.api.spendesk.com https://demo.spendesk.com https://logs.browser-intake-datadoghq.eu https://rum.browser-intake-datadoghq.eu https://browser-intake-datadoghq.eu https://api.segment.io https://cdn.segment.com https://api.amplitude.com https://api.storyblok.com https://api-js.mixpanel.com https://api-iam.intercom.io https://d3r43gyd9zmfep.cloudfront.net wss://nexus-websocket-a.intercom.io https://*.fullstory.com https://bat.bing.com https://in.hotjar.com https://*.trychameleon.com https://forms.hubspot.com https://eligibility.wootric.com https://stats.g.doubleclick.net https://www.google-analytics.com https://*.google-analytics.com https://*.spendesk.tools https://*.spendesk.com https://spx-staging-dev-i18n.s3.eu-west-1.amazonaws.com https://spx-production-i18n.s3.eu-west-1.amazonaws.com https://app.satismeter.com https://accounts.google.com https://px.ads.linkedin.com https://widgets.marqeta.com 'report-sample';script-src 'self' https://*.marqeta.com https://js.intercomcdn.com https://*.google-analytics.com https://cdn.wootric.com https://fast.trychameleon.com https://fastly.trychameleon.com https://widget.intercom.io https://cdn.mxpnl.com https://cdn.segment.com https://cdn.amplitude.com https://tracking.g2crowd.com https://scout-cdn.salesloft.com https://serve.albacross.com https://js.hsforms.net https://d3r43gyd9zmfep.cloudfront.net https://cdn-3.convertexperiments.com https://www.googleoptimize.com https://apis.google.com https://www.google.com https://accounts.google.com https://fullstory.com https://*.fullstory.com https://analytics.twitter.com https://bat.bing.com https://cdn.heapanalytics.com https://connect.facebook.net https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-banner.com https://*.hs-scripts.com https://js.hsleadflows.net https://script.hotjar.com https://snap.licdn.com https://static.ads-twitter.com https://static.hotjar.com https://www.googleadservices.com https://*.googletagmanager.com https://unpkg.com https://*.spendesk.com https://app.satismeter.com 'nonce-a4IPAUaGDMri1UHRmkkuu' 'report-sample';worker-src 'self' blob:;frame-ancestors 'self' https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com chrome-extension://dipeehgoehnglgojdgfmndjemdfepkeb https://*.marqeta.com https://app.storyblok.com https://www.spendesk.com;report-uri https://www.spendesk.com/security/report/csp;block-all-mixed-content
referrer-policy: origin-when-cross-origin
report-to: {"group":"csp-endpoint","max_age":63072000,"endpoints":[{"url":"https://www.spendesk.com/security/report/csp"}]}
x-dns-prefetch-control: off
x-frame-options: sameorigin
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8f088aa68b47b4fa-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| GET cdn.segment.com/v1/projects/TSAxLekhmUq4T9ssyyMEsmYFhMEOVezM/integrations | 143.204.48.96 | 200 OK | 1.7 kB |
URL GET HTTP/2cdn.segment.com/v1/projects/TSAxLekhmUq4T9ssyyMEsmYFhMEOVezM/integrations IP143.204.48.96:443
Requested byhttps://demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp CertificateIssuerAmazon Subject*.segment.com Fingerprint68:FC:54:EF:11:C2:99:CE:81:58:5A:E2:9B:FD:C0:05:1B:8D:9D:B4 ValidityTue, 15 Oct 2024 00:00:00 GMT - Fri, 14 Nov 2025 23:59:59 GMT
File typeASCII text, with very long lines (1789), with no line terminators Hash07ab059994a6e50e52f2fe6a6ce6af3b e13aeb8315c4a29afa1f7cd232192f476ad5dcba 82b4e101cd58263116b0d042c181484871662fa6ef5834592509629a5872d381
GET /v1/projects/TSAxLekhmUq4T9ssyyMEsmYFhMEOVezM/integrations HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://demo.app.spendesk.com
DNT: 1
Connection: keep-alive
Referer: https://demo.app.spendesk.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Fri, 30 Aug 2024 12:17:19 GMT
server: AmazonS3
x-amz-server-side-encryption: AES256
x-amz-version-id: KGzwnvcdHs4HKjctlsioE1iNBQPm8kzH
content-encoding: br
date: Wed, 11 Dec 2024 18:48:03 GMT
cache-control: public, max-age=10800
etag: W/"fc184c2c3466233c3f6f47355aae25ad"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: GOXQZ70mnE4nieJUFRg5Ahf7h6XCMmjHzWPRLM2PTVBX3ptv4Jyc9g==
age: 9387
X-Firefox-Spdy: h2
|
|
| GET demo.app.spendesk.com/static/media/mobileZenIcon.8f25fbfb00e5dea98d7feb53646eac3c.svg | 172.67.214.148 | 200 OK | 13 kB |
URL GET HTTP/2demo.app.spendesk.com/static/media/mobileZenIcon.8f25fbfb00e5dea98d7feb53646eac3c.svg IP172.67.214.148:443
Requested byhttps://demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp CertificateIssuerGoogle Trust Services Subjectdemo.app.spendesk.com FingerprintFE:33:11:0A:E3:94:37:EA:6F:46:9F:23:65:54:E2:08:CC:3C:EA:AC ValidityThu, 31 Oct 2024 00:57:24 GMT - Wed, 29 Jan 2025 00:57:23 GMT
File typeSVG Scalable Vector Graphics image Hashdee2438309c31342b77903ace134cc42 83dd54a5593d5d9fea00d13aa2d6e567d2bcc769 fb1979f138a751c3f82de65e3fb9826baf29aad8dbe882c377136b1d73fb664a
GET /static/media/mobileZenIcon.8f25fbfb00e5dea98d7feb53646eac3c.svg HTTP/1.1
Host: demo.app.spendesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp
DNT: 1
Connection: keep-alive
Cookie: spendeskDeviceUUID=ae1d273d-77ec-4d2d-a293-de2ddace1bc3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 11 Dec 2024 21:24:29 GMT
content-type: image/svg+xml
cache-control: public, max-age=31536000, immutable
content-security-policy: frame-ancestors 'self' https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com chrome-extension://dipeehgoehnglgojdgfmndjemdfepkeb https://*.marqeta.com https://app.storyblok.com https://www.spendesk.com
content-security-policy-report-only: connect-src 'self' https://demo.api.spendesk.com https://demo.spendesk.com https://logs.browser-intake-datadoghq.eu https://rum.browser-intake-datadoghq.eu https://browser-intake-datadoghq.eu https://api.segment.io https://cdn.segment.com https://api.amplitude.com https://api.storyblok.com https://api-js.mixpanel.com https://api-iam.intercom.io https://d3r43gyd9zmfep.cloudfront.net wss://nexus-websocket-a.intercom.io https://*.fullstory.com https://bat.bing.com https://in.hotjar.com https://*.trychameleon.com https://forms.hubspot.com https://eligibility.wootric.com https://stats.g.doubleclick.net https://www.google-analytics.com https://*.google-analytics.com https://*.spendesk.tools https://*.spendesk.com https://spx-staging-dev-i18n.s3.eu-west-1.amazonaws.com https://spx-production-i18n.s3.eu-west-1.amazonaws.com https://app.satismeter.com https://accounts.google.com https://px.ads.linkedin.com https://widgets.marqeta.com 'report-sample';script-src 'self' https://*.marqeta.com https://js.intercomcdn.com https://*.google-analytics.com https://cdn.wootric.com https://fast.trychameleon.com https://fastly.trychameleon.com https://widget.intercom.io https://cdn.mxpnl.com https://cdn.segment.com https://cdn.amplitude.com https://tracking.g2crowd.com https://scout-cdn.salesloft.com https://serve.albacross.com https://js.hsforms.net https://d3r43gyd9zmfep.cloudfront.net https://cdn-3.convertexperiments.com https://www.googleoptimize.com https://apis.google.com https://www.google.com https://accounts.google.com https://fullstory.com https://*.fullstory.com https://analytics.twitter.com https://bat.bing.com https://cdn.heapanalytics.com https://connect.facebook.net https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-banner.com https://*.hs-scripts.com https://js.hsleadflows.net https://script.hotjar.com https://snap.licdn.com https://static.ads-twitter.com https://static.hotjar.com https://www.googleadservices.com https://*.googletagmanager.com https://unpkg.com https://*.spendesk.com https://app.satismeter.com 'nonce-wwgrb-DPsp9JLbmNHpkHU' 'report-sample';worker-src 'self' blob:;frame-ancestors 'self' https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com chrome-extension://dipeehgoehnglgojdgfmndjemdfepkeb https://*.marqeta.com https://app.storyblok.com https://www.spendesk.com;report-uri https://www.spendesk.com/security/report/csp;block-all-mixed-content
referrer-policy: origin-when-cross-origin
report-to: {"group":"csp-endpoint","max_age":63072000,"endpoints":[{"url":"https://www.spendesk.com/security/report/csp"}]}
x-dns-prefetch-control: off
x-frame-options: sameorigin
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8f088ab06937b4fa-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| GET demo.app.spendesk.com/static/media/google-logo.637a504afc2310a19777.svg | 172.67.214.148 | 200 OK | 2.2 kB |
URL GET HTTP/2demo.app.spendesk.com/static/media/google-logo.637a504afc2310a19777.svg IP172.67.214.148:443
Requested byhttps://demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp CertificateIssuerGoogle Trust Services Subjectdemo.app.spendesk.com FingerprintFE:33:11:0A:E3:94:37:EA:6F:46:9F:23:65:54:E2:08:CC:3C:EA:AC ValidityThu, 31 Oct 2024 00:57:24 GMT - Wed, 29 Jan 2025 00:57:23 GMT
File typeSVG Scalable Vector Graphics image Hashf00320a05b8c1ef97bee4e90d2093a04 5074ea2df0ea61e3e4f865ad0bf64d650110eb83 7081f16e5d470adbeaeb6d0f8807e16488db93de3e88a1efec82721d1c238c80
GET /static/media/google-logo.637a504afc2310a19777.svg HTTP/1.1
Host: demo.app.spendesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://demo.app.spendesk.com/static/css/auth.35e100a4.css
DNT: 1
Connection: keep-alive
Cookie: spendeskDeviceUUID=ae1d273d-77ec-4d2d-a293-de2ddace1bc3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 11 Dec 2024 21:24:29 GMT
content-type: image/svg+xml
cache-control: public, max-age=31536000, immutable
content-security-policy: frame-ancestors 'self' https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com chrome-extension://dipeehgoehnglgojdgfmndjemdfepkeb https://*.marqeta.com https://app.storyblok.com https://www.spendesk.com
content-security-policy-report-only: connect-src 'self' https://demo.api.spendesk.com https://demo.spendesk.com https://logs.browser-intake-datadoghq.eu https://rum.browser-intake-datadoghq.eu https://browser-intake-datadoghq.eu https://api.segment.io https://cdn.segment.com https://api.amplitude.com https://api.storyblok.com https://api-js.mixpanel.com https://api-iam.intercom.io https://d3r43gyd9zmfep.cloudfront.net wss://nexus-websocket-a.intercom.io https://*.fullstory.com https://bat.bing.com https://in.hotjar.com https://*.trychameleon.com https://forms.hubspot.com https://eligibility.wootric.com https://stats.g.doubleclick.net https://www.google-analytics.com https://*.google-analytics.com https://*.spendesk.tools https://*.spendesk.com https://spx-staging-dev-i18n.s3.eu-west-1.amazonaws.com https://spx-production-i18n.s3.eu-west-1.amazonaws.com https://app.satismeter.com https://accounts.google.com https://px.ads.linkedin.com https://widgets.marqeta.com 'report-sample';script-src 'self' https://*.marqeta.com https://js.intercomcdn.com https://*.google-analytics.com https://cdn.wootric.com https://fast.trychameleon.com https://fastly.trychameleon.com https://widget.intercom.io https://cdn.mxpnl.com https://cdn.segment.com https://cdn.amplitude.com https://tracking.g2crowd.com https://scout-cdn.salesloft.com https://serve.albacross.com https://js.hsforms.net https://d3r43gyd9zmfep.cloudfront.net https://cdn-3.convertexperiments.com https://www.googleoptimize.com https://apis.google.com https://www.google.com https://accounts.google.com https://fullstory.com https://*.fullstory.com https://analytics.twitter.com https://bat.bing.com https://cdn.heapanalytics.com https://connect.facebook.net https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-banner.com https://*.hs-scripts.com https://js.hsleadflows.net https://script.hotjar.com https://snap.licdn.com https://static.ads-twitter.com https://static.hotjar.com https://www.googleadservices.com https://*.googletagmanager.com https://unpkg.com https://*.spendesk.com https://app.satismeter.com 'nonce-p_EWJogvKVje5DJ-jLhTO' 'report-sample';worker-src 'self' blob:;frame-ancestors 'self' https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com https://demo.spendesk.com https://demo.api.spendesk.com https://demo.api.spendesk.com chrome-extension://dipeehgoehnglgojdgfmndjemdfepkeb https://*.marqeta.com https://app.storyblok.com https://www.spendesk.com;report-uri https://www.spendesk.com/security/report/csp;block-all-mixed-content
referrer-policy: origin-when-cross-origin
report-to: {"group":"csp-endpoint","max_age":63072000,"endpoints":[{"url":"https://www.spendesk.com/security/report/csp"}]}
x-dns-prefetch-control: off
x-frame-options: sameorigin
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8f088ab07952b4fa-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| GET cdn.segment.com/analytics-next/bundles/ajs-destination.bundle.ed53a26b6edc80c65d73.js | 143.204.48.96 | 200 OK | 9.3 kB |
URL GET HTTP/2cdn.segment.com/analytics-next/bundles/ajs-destination.bundle.ed53a26b6edc80c65d73.js IP143.204.48.96:443
Requested byhttps://demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp CertificateIssuerAmazon Subject*.segment.com Fingerprint68:FC:54:EF:11:C2:99:CE:81:58:5A:E2:9B:FD:C0:05:1B:8D:9D:B4 ValidityTue, 15 Oct 2024 00:00:00 GMT - Fri, 14 Nov 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (9406), with no line terminators Hashdefb9a3767dd29149113ad936cc421cb 4413847b3ee811cc644e012be8db5f02c1964d52 545d5230918bffd3499d9275cccb6f2854cf53518606f872191abe1b4115b067
GET /analytics-next/bundles/ajs-destination.bundle.ed53a26b6edc80c65d73.js HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://demo.app.spendesk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 16 Jul 2024 21:54:32 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Tue, 16 Jul 2024 17:27:05 GMT
etag: W/"00e9c65cbba11c07c4bf4a6e2727b8ea"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000,immutable
x-amz-version-id: mUKhKkDsTlV_L45onrBdOfv9_aAUrh2t
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: j9VT64IzFlS-XmtwCK1mCJtp_YHnYzSMlVJ_1nLJdj6jVpGG88IT6Q==
age: 12785398
X-Firefox-Spdy: h2
|
|
| GET cdn.segment.com/next-integrations/actions/amplitude-plugins/5843404183e0e2708588.js | 143.204.48.96 | 200 OK | 4.2 kB |
URL GET HTTP/2cdn.segment.com/next-integrations/actions/amplitude-plugins/5843404183e0e2708588.js IP143.204.48.96:443
Requested byhttps://demo.app.spendesk.com/auth/login?session-expired=1&targetUrl=https%3A%2F%2Fdemo.app.spendesk.com%2Fapp CertificateIssuerAmazon Subject*.segment.com Fingerprint68:FC:54:EF:11:C2:99:CE:81:58:5A:E2:9B:FD:C0:05:1B:8D:9D:B4 ValidityTue, 15 Oct 2024 00:00:00 GMT - Fri, 14 Nov 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (4333), with no line terminators Hash1ad0c1b1b9ee1fedceffc763d709dfd1 d8755dcb1806a701545e16db1b9626bd33f5550c 8be6463bb0477953508ce350bc30d8cb4848c3189b1e3f68e83b6765d1834aca
GET /next-integrations/actions/amplitude-plugins/5843404183e0e2708588.js HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://demo.app.spendesk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Tue, 19 Nov 2024 11:09:31 GMT
server: AmazonS3
x-amz-server-side-encryption: AES256
x-amz-version-id: kX3PuPXBRVJ60eKoh0qjFuukb9TDoUfl
content-encoding: gzip
date: Wed, 11 Dec 2024 13:24:50 GMT
etag: W/"bfcaa2bd88528e167572b789dfee5aa2"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 4TXNRY3uZtEHKGlXlT0ommxa9g7kykXzSFOnxgZLnok7hfw_tbT5ag==
age: 28784
X-Firefox-Spdy: h2
|
|