HTTP/2 200 
date: Sun, 19 Apr 2020 09:20:33 GMT
content-type: text/html; charset=utf-8
set-cookie: acw_tc=95818c0915872880329896491e77b60d6b9fc2d2f7f758ac1b859ba0fdef55;path=/;HttpOnly;Max-Age=1800
server: openresty
vary: Accept-Encoding
x-powered-by: Express
etag: W/"1346c9-x+9RQV1Pxl+x8MHNC6uW1w"
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-paytm-srv-id: pawslmktshopapp16120
strict-transport-security: max-age=86400
x-mach: paytmfrontend-webnmweb-v1-27-240
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1
x-server-time: 1587288033.249
content-security-policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' *.paytm.com platform.twitter.com cdn.syndication.twimg.com gateway.answerscloud.com *.cloudfront.net *.google.com *.hotjar.com apis.mapmyindia.com cdn.ravenjs.com *.youtube.com *.gstatic.com *.googleadservices.com *.doubleclick.net bid.g.doubleclick.net u.heatmap.it cdn.trackjs.com s.ytimg.com *.googletagmanager.com *.googleapis.com *.google-analytics.com cdnjs.cloudflare.com assets.zendesk.com connect.facebook.net cdn.branch.io googleads.g.doubleclick.net app.link bid.g cdn.ampproject.org dev.visualwebsiteoptimizer.com *.insider.in blob:; frame-src 'self' *.paytm.com *.twitter.com s.ytimg.com cdn.syndication.twimg.com *.insider.in *.youtube.com assets.zendesk.com apis.mapmyindia.com *.facebook.com *.google.com *.hotjar.com cdn.ravenjs.com s-static.ak.facebook.com tautt.zendesk.com;  object-src 'self'; report-uri https://csp-report.mypaytm.com/reportcspviolations.php