HTTP/1.1 302 
Set-Cookie: JSESSIONID=7A0BB227CA6C8DD24C3E2120E8E02256; Path=/; Secure; HttpOnly
Set-Cookie: JSESSIONID=7A0BB227CA6C8DD24C3E2120E8E02256; Secure; HttpOnly; Expires=25-03-2026 14:19:28; SameSite=None
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: Content-Type, Authorization, X-Requested-With
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 3600
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Content-Security-Policy: default-src 'self'; frame-src 'self' blob:;img-src 'self' data:; script-src 'self' 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline'
X-Content-Security-Policy: default-src 'self'; frame-src 'self' blob:;img-src 'self' data:; script-src 'self' 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; frame-src 'self' blob:;img-src 'self' data:; script-src 'self' 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline'
Referrer-Policy: strict-origin-when-cross-origin
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
x-frame-options: SAMEORIGIN
Set-Cookie: JSESSIONID=1774415966; Secure; HttpOnly; Expires=25-03-2026 14:19:28
Location: base/frame/login.jsp?FM_SYS_ID=hr80
Content-Type: text/html;charset=utf-8
Content-Length: 0
Date: Wed, 25 Mar 2026 05:19:28 GMT