HTTP/1.1 302 
Set-Cookie: JSESSIONID=3596866F052E163BE1AB9D255E3A3074; Path=/; Secure; HttpOnly
Set-Cookie: JSESSIONID=3596866F052E163BE1AB9D255E3A3074; Secure; HttpOnly; Expires=17-12-2025 16:26:08; SameSite=None
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: Content-Type, Authorization, X-Requested-With
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 3600
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Content-Security-Policy: default-src 'self'; frame-src 'self' blob:;img-src 'self' data:; script-src 'self' 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline'
X-Content-Security-Policy: default-src 'self'; frame-src 'self' blob:;img-src 'self' data:; script-src 'self' 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; frame-src 'self' blob:;img-src 'self' data:; script-src 'self' 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline'
Referrer-Policy: strict-origin-when-cross-origin
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
x-frame-options: SAMEORIGIN
Set-Cookie: JSESSIONID=1765956366; Secure; HttpOnly; Expires=17-12-2025 16:26:08
Location: base/frame/login.jsp?FM_SYS_ID=hr80
Content-Type: text/html;charset=utf-8
Content-Length: 0
Date: Wed, 17 Dec 2025 07:26:08 GMT