HTTP/1.0 302 Moved Temporarily
Location: https://bnsfstore.com/
Server: BigIP
Connection: Keep-Alive
Content-Length: 0
HTTP/1.1 302 Found
Cache-Control: private,must-revalidate
Content-Length: 136
Content-Type: text/html; charset=utf-8
Location: /Main?ReturnUrl=%2f
Server: Microsoft-IIS/10.0
Request-Context: appId=cid-v1:cd69ca3f-f379-4e67-8835-c3d66d6be699
Access-Control-Expose-Headers: Request-Context
P3P: CP="NID DSP ALL COR"
Access-Control-Allow-Origin: http://c.bdac.co
X-UA-Compatible: IE=edge
App-Name: BDACOMMERCE
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self' *.bdasites.com bdasites.com; font-src 'self' *.bdasites.com bdasites.com fonts.gstatic.com acsbapp.com; style-src 'self' 'unsafe-inline' *.bdasites.com bdasites.com ajax.aspnetcdn.com *.google.com fonts.googleapis.com *.sharethis.com ajax.googleapis.com *.paypal.com cdn-images.mailchimp.com; connect-src 'self' *.doubleclick.net www.google-analytics.com *.sharethis.com *.paypal.com cdn.cookielaw.org bam.nr-data.net privacyportal.onetrust.com rs.fullstory.com *.acsbapp.com; img-src * data:; media-src *; frame-src *; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.bdasites.com bdasites.com *.doubleclick.net www.googletagmanager.com www.google-analytics.com ajax.aspnetcdn.com *.recaptcha.net *.google.com *.googlecode.com *.newrelic.com *.bootstrapcdn.com *.googleapis.com *.sharethis.com invitebox.com urltag.net bam.nr-data.net privacyportal.onetrust.com connect.facebook.net www.gstatic.com *.paypal.com cdn.cookielaw.org app.getstorybox.com cdn-images.mailchimp.com s3.amazonaws.com bdainc.us6.list-manage.com static.criteo.net sslwidget.criteo.com edge.fullstory.com acsbapp.com
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Date: Sun, 19 Dec 2021 16:39:52 GMT
Connection: close
X-REQUEST-ID:: 83775054
HTTP/1.1 302 Found
Cache-Control: private, s-maxage=0,must-revalidate
Content-Length: 144
Content-Type: text/html; charset=utf-8
Location: /Main/Default?ReturnUrl=%2F
Server: Microsoft-IIS/10.0
Set-Cookie: ASP.NET_SessionId=3wq5ilorxcdixjgorucqyn2z; path=/; secure; HttpOnly; SameSite=None
Set-Cookie: CULTURE_KEY=en-US; path=/; secure; HttpOnly; SameSite=None
Set-Cookie: BNSF_SHOPPER_LOCALE_8_0=hDle0rAiteIUHJZdPnEWMQ==; expires=Sat, 19-Mar-2022 16:39:52 GMT; path=/; secure; HttpOnly; SameSite=None
X-Frame-Options: DENY
Set-Cookie: ASP.NET_SessionId=3wq5ilorxcdixjgorucqyn2z; path=/; secure; HttpOnly; SameSite=None
Set-Cookie: CULTURE_KEY=en-US; path=/; secure; HttpOnly; SameSite=None
Set-Cookie: BNSF_SHOPPER_LOCALE_8_0=hDle0rAiteIUHJZdPnEWMQ==; expires=Sat, 19-Mar-2022 16:39:52 GMT; path=/; secure; HttpOnly; SameSite=None
Set-Cookie: BNSF_SESSION_8_0=FPA2vssuIhdf8CV3dW6mK+WRNMjQYKUkYWQePDjs6poEvthenGkjMLIYZwt2OoZi1Ql6mXz1DtVNAhocdu983N/DgCR7SIoVoNsllJ142Ys=; path=/; secure; HttpOnly; SameSite=None
Set-Cookie: BNSF_CARTCONTEXT_8_0=URIS7PCjOrcujEIFMhYU1f85ZZfGNRLzv6lkTVcLD+gy0wL+jLZxReUYvEHmRODewZLDfbZYCNUTDDm7i9G+cA==; expires=Thu, 17-Feb-2022 16:39:52 GMT; path=/; secure; HttpOnly; SameSite=None
Request-Context: appId=cid-v1:cd69ca3f-f379-4e67-8835-c3d66d6be699
Access-Control-Expose-Headers: Request-Context
P3P: CP="NID DSP ALL COR"
Access-Control-Allow-Origin: http://c.bdac.co
X-UA-Compatible: IE=edge
App-Name: BDACOMMERCE
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self' *.bdasites.com bdasites.com; font-src 'self' *.bdasites.com bdasites.com fonts.gstatic.com acsbapp.com; style-src 'self' 'unsafe-inline' *.bdasites.com bdasites.com ajax.aspnetcdn.com *.google.com fonts.googleapis.com *.sharethis.com ajax.googleapis.com *.paypal.com cdn-images.mailchimp.com; connect-src 'self' *.doubleclick.net www.google-analytics.com *.sharethis.com *.paypal.com cdn.cookielaw.org bam.nr-data.net privacyportal.onetrust.com rs.fullstory.com *.acsbapp.com; img-src * data:; media-src *; frame-src *; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.bdasites.com bdasites.com *.doubleclick.net www.googletagmanager.com www.google-analytics.com ajax.aspnetcdn.com *.recaptcha.net *.google.com *.googlecode.com *.newrelic.com *.bootstrapcdn.com *.googleapis.com *.sharethis.com invitebox.com urltag.net bam.nr-data.net privacyportal.onetrust.com connect.facebook.net www.gstatic.com *.paypal.com cdn.cookielaw.org app.getstorybox.com cdn-images.mailchimp.com s3.amazonaws.com bdainc.us6.list-manage.com static.criteo.net sslwidget.criteo.com edge.fullstory.com acsbapp.com
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Date: Sun, 19 Dec 2021 16:39:52 GMT
Connection: close
X-REQUEST-ID:: 49809852
HTTP/1.1 401 Unauthorized
Cache-Control: private,must-revalidate
Content-Length: 1293
Content-Type: text/html
Server: Microsoft-IIS/10.0
Request-Context: appId=cid-v1:cd69ca3f-f379-4e67-8835-c3d66d6be699
Access-Control-Expose-Headers: Request-Context
P3P: CP="NID DSP ALL COR"
Access-Control-Allow-Origin: http://c.bdac.co
X-UA-Compatible: IE=edge
App-Name: BDACOMMERCE
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self' *.bdasites.com bdasites.com; font-src 'self' *.bdasites.com bdasites.com fonts.gstatic.com acsbapp.com; style-src 'self' 'unsafe-inline' *.bdasites.com bdasites.com ajax.aspnetcdn.com *.google.com fonts.googleapis.com *.sharethis.com ajax.googleapis.com *.paypal.com cdn-images.mailchimp.com; connect-src 'self' *.doubleclick.net www.google-analytics.com *.sharethis.com *.paypal.com cdn.cookielaw.org bam.nr-data.net privacyportal.onetrust.com rs.fullstory.com *.acsbapp.com; img-src * data:; media-src *; frame-src *; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.bdasites.com bdasites.com *.doubleclick.net www.googletagmanager.com www.google-analytics.com ajax.aspnetcdn.com *.recaptcha.net *.google.com *.googlecode.com *.newrelic.com *.bootstrapcdn.com *.googleapis.com *.sharethis.com invitebox.com urltag.net bam.nr-data.net privacyportal.onetrust.com connect.facebook.net www.gstatic.com *.paypal.com cdn.cookielaw.org app.getstorybox.com cdn-images.mailchimp.com s3.amazonaws.com bdainc.us6.list-manage.com static.criteo.net sslwidget.criteo.com edge.fullstory.com acsbapp.com
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Date: Sun, 19 Dec 2021 16:39:52 GMT
Connection: close
X-REQUEST-ID:: 5474943
|