HTTP/1.0 302 Moved Temporarily
Location: https://xcelenergystore.com/
Server: BigIP
Connection: Keep-Alive
Content-Length: 0
HTTP/1.0 302 Moved Temporarily
Location: https://www.poweredbyefi.org/xcelenergyco/splash
Server: BigIP
Connection: close
Content-Length: 0
HTTP/2 200
content-type: text/html; charset=UTF-8
x-xss-protection: 1; mode=block
expires: Fri, 08 Sep 2023 01:09:22 GMT
x-frame-options: SAMEORIGIN
x-group: NOT_LOGGED_IN
x-content-type-options: nosniff
x-content-type-options: nosniff
content-security-policy: font-src *.fontawesome.com *.fonts.googleapis.com *.gstatic.com data: *.cloudflare.com *.google.com *.poweredbyefi.org *.yotpo.com data: 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com *.cardinalcommerce.com *.paypal.com 'self' 'unsafe-inline'; frame-ancestors 'self'; frame-src fast.amc.demdex.net *.adobe.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.googletagmanager.com *.youtube.com *.youtube-nocookie.com www.paypal.com www.sandbox.paypal.com pilot-payflowlink.paypal.com player.vimeo.com c.paypal.com checkout.paypal.com assets.braintreegateway.com pay.google.com *.cardinalcommerce.com *.paypal.com *.google.com *.addthis.com *.pinterest.com *.langshop.io nest.com *.nest.com store.google.com livechatinc.com *.livechatinc.com *.gstatic.com *.braintree-api.com *.braintreegateway.com *.linkedin.com *.google-analytics.com *.doubleclick.net *.googletagmanager.com *.energystar.gov *.google.co.in *.amazonaws.com *.alocdn.com *.facebook.net *.facebook.com *.poweredbyefi.org *.emerson.com bam-cell.nr-data.net *.kaptcha.com *.bam.nr-data.net *.azureedge.net 'self' 'unsafe-inline'; img-src assets.adobedtm.com amcglobal.sc.omtrdc.net dpm.demdex.net cm.everesttech.net *.adobe.com widgets.magentocommerce.com data: www.googleadservices.com www.google-analytics.com *.ftcdn.net *.behance.net t.paypal.com www.paypal.com www.paypalobjects.com fpdbs.paypal.com fpdbs.sandbox.paypal.com *.vimeocdn.com i.ytimg.com *.youtube.com validator.swagger.io www.sandbox.paypal.com b.stats.paypal.com dub.stats.paypal.com assets.braintreegateway.com c.paypal.com checkout.paypal.com *.paypal.com *.cloudflare.com *.cdn.klarna.com *.s.ytimg.com *.widgets.magentocommerce.com *.fpdbs.paypal.com *.t.paypal.com *.fpdbs.sandbox.paypal.com *.googleapis.com *.gstatic.com *.addthis.com *.pinterest.com *.cdninstagram.com doubleclick.net *.doubleclick.net *.google.com google.com *.riskified.com *.braintree-api.com *.braintreegateway.com *.linkedin.com *.google-analytics.com *.googletagmanager.com *.energystar.gov *.google.co.in *.amazonaws.com *.alocdn.com *.facebook.net *.facebook.com *.poweredbyefi.org *.yotpo.com *.ytimg.com *.sessioncam.com bam-cell.nr-data.net *.trkn.us trkn.us bam.nr-data.net data: 'self' 'unsafe-inline'; script-src assets.adobedtm.com *.adobe.com geostag.cardinalcommerce.com 1eafstag.cardinalcommerce.com geoapi.cardinalcommerce.com 1eafapi.cardinalcommerce.com songbird.cardinalcommerce.com includestest.ccdc02.com www.googleadservices.com www.google-analytics.com www.googletagmanager.com www.paypal.com www.sandbox.paypal.com www.paypalobjects.com t.paypal.com s.ytimg.com www.googleapis.com vimeo.com www.vimeo.com *.vimeocdn.com *.youtube.com *.avada.io js.braintreegateway.com assets.braintreegateway.com c.paypal.com pay.google.com api.braintreegateway.com api.sandbox.braintreegateway.com client-analytics.braintreegateway.com client-analytics.sandbox.braintreegateway.com *.paypal.com *.googleapis.com *.addthis.com *.moatads.com *.addthisedge.com *.facebook.com *.pinterest.com *.instagram.com livechatinc.com *.livechatinc.com riskified.com *.riskified.com *.googletagmanager.com googletagmanager.com cloudfront.net *.cloudfront.net *.adobedtm.com *.google.com *.gstatic.com *.licdn.com *.braintree-api.com *.braintreegateway.com *.linkedin.com *.google-analytics.com *.doubleclick.net *.energystar.gov *.google.co.in *.amazonaws.com *.alocdn.com *.facebook.net *.poweredbyefi.org *.yotpo.com bam-cell.nr-data.net *.newrelic.com bam.nr-data.net *.azureedge.net *.lr-ingest.io *.datadoghq-browser-agent.com *.browser-intake-us3-datadoghq.com 'self' 'unsafe-inline' 'unsafe-eval'; style-src *.adobe.com *.fontawesome.com unsafe-inline *.googleapis.com googleapis.com ajax.googleapis.com *.google.com *.gstatic.com *.braintree-api.com *.braintreegateway.com *.paypal.com *.linkedin.com *.google-analytics.com *.doubleclick.net *.googletagmanager.com *.youtube.com *.energystar.gov *.google.co.in *.amazonaws.com *.alocdn.com *.facebook.net *.facebook.com *.poweredbyefi.org *.yotpo.com *.bam.nr-data.net *.azureedge.net 'self' 'unsafe-inline'; object-src 'self' 'unsafe-inline'; media-src *.adobe.com livechatinc.com *.livechatinc.com *.google.com *.gstatic.com *.braintree-api.com *.braintreegateway.com *.paypal.com *.linkedin.com *.google-analytics.com *.doubleclick.net *.googletagmanager.com *.youtube.com *.energystar.gov *.google.co.in *.amazonaws.com *.alocdn.com *.facebook.net *.facebook.com bam.nr-data.net 'self' 'unsafe-inline'; manifest-src 'self' 'unsafe-inline'; connect-src dpm.demdex.net amcglobal.sc.omtrdc.net geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.google-analytics.com vimeo.com www.sandbox.paypal.com www.paypalobjects.com www.paypal.com pilot-payflowlink.paypal.com https://get.geojs.io *.avada.io api.braintreegateway.com api.sandbox.braintreegateway.com client-analytics.braintreegateway.com client-analytics.sandbox.braintreegateway.com *.braintree-api.com *.paypal.com *.cloudflare.com *.googleapis.com *.addthis.com *.cardinalcommerce.com *.graph.instagram.com *.google-analytics.com *.sessioncam.com sessioncam.com smartystreets.com *.smartystreets.com *.riskified.com *.google.com *.braintreegateway.com *.linkedin.com *.doubleclick.net *.googletagmanager.com *.youtube.com *.energystar.gov *.google.co.in *.amazonaws.com *.alocdn.com *.facebook.net *.facebook.com *.poweredbyefi.org *.yotpo.com *.livechatinc.com bam-cell.nr-data.net bam.nr-data.net *.lr-ingest.io *.browser-intake-us3-datadoghq.com 'self' 'unsafe-inline'; child-src assets.braintreegateway.com c.paypal.com *.paypal.com http: https: blob: 'self' 'unsafe-inline'; default-src 'self' 'unsafe-inline' 'unsafe-eval'; base-uri *.poweredbyefi.org 'self' 'unsafe-inline';
content-security-policy: upgrade-insecure-requests;
pragma: cache
strict-transport-security: max-age=31536000
accept-ranges: bytes
date: Thu, 07 Sep 2023 01:09:22 GMT
age: 0
x-served-by: cache-lga21926-LGA, cache-lga21962-LGA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1694048962.286164,VS0,VE477
cache-control: no-store, no-cache, must-revalidate, max-age=0
vary: Accept-Encoding,Cookie
content-length: 53198
|