HTTP/1.1 302 
Set-Cookie: JSESSIONID=AD7DF490CE90F8195FF5BD2E18F71390; Path=/; Secure; HttpOnly
Set-Cookie: JSESSIONID=AD7DF490CE90F8195FF5BD2E18F71390; Secure; HttpOnly; Expires=31-05-2026 06:21:43; SameSite=None
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: Content-Type, Authorization, X-Requested-With
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 3600
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Content-Security-Policy: default-src 'self'; frame-src 'self' blob:;img-src 'self' data:; script-src 'self' 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline'
X-Content-Security-Policy: default-src 'self'; frame-src 'self' blob:;img-src 'self' data:; script-src 'self' 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; frame-src 'self' blob:;img-src 'self' data:; script-src 'self' 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline'
Referrer-Policy: strict-origin-when-cross-origin
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
x-frame-options: SAMEORIGIN
Set-Cookie: JSESSIONID=1780176102; Secure; HttpOnly; Expires=31-05-2026 06:21:43
Set-Cookie: JSESSIONID=2C200105F8A38C860474F3017A0A14A9; Secure; HttpOnly; Expires=31-05-2026 06:21:43
Set-Cookie: JSESSIONID=kmvrskk8qvds4bjs39hdf94400; Secure; HttpOnly; Expires=31-05-2026 06:21:43
Location: base/frame/login.jsp?FM_SYS_ID=hr80
Content-Type: text/html;charset=utf-8
Content-Length: 0
Date: Sat, 30 May 2026 21:21:43 GMT