HTTP/1.1 200 OK
Server: nginx
Content-Type: text/html; charset=utf-8
Vary: Accept-Encoding
Content-Security-Policy-Report-Only: default-src https: 'unsafe-inline' 'unsafe-eval' wss: ;img-src https: data: blob: ; font-src https: data:; form-action https: http://www.last.fm; report-uri https://cbsi.report-uri.io/r/default/csp/enforce
Vary: Cookie
X-PJAX-URL: https://www.last.fm/
X-Frame-Options: SAMEORIGIN
Content-Language: en
Content-Security-Policy: upgrade-insecure-requests;
X-Served-By: ws338
Content-Encoding: gzip
Expires: Wed, 02 May 2018 08:00:04 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Wed, 02 May 2018 08:00:04 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: not_first_visit=1; Path=/
Set-Cookie: sessionid=eyJzZXNzaW9uX2lkIjoiMmY0ZmI1NDUtZmQ0NC00NWIzLWIyMzEtNjRkOGJkOWFiZmZiIn0:1fDmgG:uB-ib4M_vSuSVrJBNzDnHLWcBY4; Domain=.last.fm; expires=Thu, 02-May-2019 08:00:04 GMT; httponly; Max-Age=31536000; Path=/; secure
Set-Cookie: csrftoken=U8VMvZPmk5FCJLB8tOc1KVt6BXJ3KyQ5; expires=Wed, 01-May-2019 08:00:04 GMT; Max-Age=31449600; Path=/; secure
Vary: User-Agent