HTTP/1.1 302 
Set-Cookie: JSESSIONID=86E86849E3F7C37C19DB8C222696D234; Path=/; Secure; HttpOnly
Set-Cookie: JSESSIONID=86E86849E3F7C37C19DB8C222696D234; Secure; HttpOnly; Expires=11-02-2026 22:42:39; SameSite=None
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: Content-Type, Authorization, X-Requested-With
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 3600
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Content-Security-Policy: default-src 'self'; frame-src 'self' blob:;img-src 'self' data:; script-src 'self' 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline'
X-Content-Security-Policy: default-src 'self'; frame-src 'self' blob:;img-src 'self' data:; script-src 'self' 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; frame-src 'self' blob:;img-src 'self' data:; script-src 'self' 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline'
Referrer-Policy: strict-origin-when-cross-origin
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
x-frame-options: SAMEORIGIN
Set-Cookie: JSESSIONID=1770817359; Secure; HttpOnly; Expires=11-02-2026 22:42:39
Set-Cookie: JSESSIONID=9h8qiqq0d6ptn15b7r0qj3j4o4; Secure; HttpOnly; Expires=11-02-2026 22:42:39
Set-Cookie: JSESSIONID=5B2A67D060802880D08CEEE47598BEFD; Secure; HttpOnly; Expires=11-02-2026 22:42:39
Set-Cookie: JSESSIONID=HandLtestDomainValueServer; Secure; HttpOnly; Expires=11-02-2026 22:42:39
Location: base/frame/login.jsp?FM_SYS_ID=hr80
Content-Type: text/html;charset=utf-8
Content-Length: 0
Date: Wed, 11 Feb 2026 13:42:39 GMT