HTTP/1.1 302 
Set-Cookie: JSESSIONID=D2DF7159F785A05921FF011FC00E2197; Path=/; Secure; HttpOnly
Set-Cookie: JSESSIONID=D2DF7159F785A05921FF011FC00E2197; Secure; HttpOnly; Expires=14-12-2025 09:20:21; SameSite=None
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: Content-Type, Authorization, X-Requested-With
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 3600
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Content-Security-Policy: default-src 'self'; frame-src 'self' blob:;img-src 'self' data:; script-src 'self' 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline'
X-Content-Security-Policy: default-src 'self'; frame-src 'self' blob:;img-src 'self' data:; script-src 'self' 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; frame-src 'self' blob:;img-src 'self' data:; script-src 'self' 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline'
Referrer-Policy: strict-origin-when-cross-origin
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
x-frame-options: SAMEORIGIN
Set-Cookie: JSESSIONID=1765672861; Secure; HttpOnly; Expires=14-12-2025 09:20:21
Location: base/frame/login.jsp?FM_SYS_ID=hr80
Content-Type: text/html;charset=utf-8
Content-Length: 0
Date: Sun, 14 Dec 2025 00:20:21 GMT