HTTP/1.1 200 OK
Server: CloudFront
Content-Type: text/html; charset=utf-8
Content-Length: 1769
Connection: close
Vary: Accept-Encoding
Date: Mon, 22 Dec 2025 07:20:27 GMT
x-request-id: CUSTOMER-AGK-dd1a-4d3d-b8bd-433bc4b0c711-t1766388027532
set-cookie: _csrf-prod-us=DcAvDc5gAVsXkjA3JB%2BFuge3O1HHfB2824x2PNZuXmFZjyQXZ4BdgWYXrtmglCqiyh0YrmPEnBcFDpxOgn%2Bw2loMy2MvIc0XqN%2BzRDLDnRjbXkt6%2FLIoBHYmFVUgdVjK03xzmA%3D%3D; Max-Age=2592000; Domain=checkpoint.checkr.com; Path=/; Expires=Wed, 21 Jan 2026 07:20:27 GMT; HttpOnly; Secure; SameSite=Lax
set-cookie: mts-us-east-1=s%3AFN_PuSw2e1D-xrTpQKkZdV9TsRP360Ym.3Bp91FFdZkw4dPzjrfBgHRMBnNOTqk3HSkqUxYzIERw; Path=/; HttpOnly; Secure; SameSite=None
mtr: us-east-1
etag: W/"6e9-utfYM9hF0DKj1sFqEfGIX70XKak"
x-envoy-upstream-service-time: 21
Access-Control-Expose-Headers: x-request-time, x-envoy-upstream-service-time, x-request-id, server-timing
X-Content-Type-Options: nosniff
X-Request-Time: 0.023;
content-security-policy: frame-ancestors 'self' *.actionaly.com *.aiwyn.ai *.alkami.com *.ameyo.com *.annata.net *.arht.tech *.atlassian.com *.atlassian.net *.brighter.ai *.centripetal.ai *.classtime.com *.clearwaveinc.com *.contentsquare.com *.crm.ondemand.com *.darktrace.com *.doubleoctopus.com *.dynamics.com *.enable.com *.enable.us *.engagingnetworks.net *.flyr.com *.force.com *.forduniversity.com *.gainsight.com *.h-dnet.com *.highspot.com *.hubspot.com *.hubspoteditor.com *.ipresent.com *.ipresentweb.com *.justappraised.com *.live.com *.mediafly.com *.mindtickle.app *.mindtickle.com *.mismo.team *.myfreshworks.com *.numero.ai *.okta.com *.papirfly.com *.pascivite.com *.peoplegrove.com *.propelleraero.com *.reverselogix.com *.rheinberg-pools.de *.rready.com *.salesforce-communities.com *.salesforce-experience.com *.salesforce.com *.schoolmint.com *.schoolstatus.com *.seismic.com *.site.com *.splunkcoach.com *.stripe.partners *.supremeopti.com *.talview.com *.techsee.me *.tenable.com *.theiquest.com *.thermofisher.one *.tracegains.com *.trexgroup.com *.trucesoftware.com *.trustnetinc.com *.twilio.com *.uniphorecloud.com *.unraveldata.com *.upshop.com *.voucherify.io *.wisesystems.com *.zendesk.com *.zoom.us digdeeper.sysdig.com *.showpad.biz *.office.com *.office365.com partnertraining.bluebeam.com *.goto.com enablement.cribl.io *.bitsight.com *.outreach.io *.develop.lightning.force.com *.lightning.force.com *.redhat.com *.everfox.com *.keyfactor.com *.bottomline.com *.keymarkinc.com *.browserstack.com *.prescryptive.com *.lincoln.com *.haasalert.com *.lincolnforyou.com *.firstsource.com *.druva.com *.lookbookhq.com *.cisco.com *.oneidentity.com *.whatfix.com whatfix.com *.climateimpact.com *.graphisoft.com *.huntress.com *.expel.com *.sayari.com *.hellopebl.com *.saludamedical.com *.checkr.com
X-Cache: Miss from cloudfront
Via: 1.1 b3c2d934335633b45a80b7ad63463cda.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: FRA60-P13
X-Amz-Cf-Id: PWidqSU7mnzhZHT8zRAHAb5pKCxktCQHwXYEhwSLn9N5DTM6-fPlxg==
Strict-Transport-Security: max-age=31536000; includeSubDomains
Server-Timing: cdn-upstream-layer;desc="Origin Shield",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=6,cdn-upstream-fbl;dur=34,cdn-cache-miss,cdn-pop;desc="FRA60-P13",cdn-rid;desc="PWidqSU7mnzhZHT8zRAHAb5pKCxktCQHwXYEhwSLn9N5DTM6-fPlxg==",cdn-downstream-fbl;dur=140


<!DOCTYPE html>
<html xmlns="http://www.w3.org/1999/xhtml" dir="ltr" lang="en-US">

<head>
  <script type="text/javascript" nonce="5e0d52a8">
    var sameSiteNoneCompatible = "true" === "true";
    var query = '';
    var redirectUrl = '/' ;
    if (redirectUrl) {
          query = `?loginredirecturi=${encodeURIComponent(redirectUrl)}`
    }

    function getCookieValue (key, value, expires) {
      /* Note:
        We cannot set 'httpOnly' attribute in this cookie due to below two reasons:
        1. 'httpOnly' cookie can only be set by the server and not by any client side code.
        https://stackoverflow.com/questions/14691654/set-a-cookie-to-httponly-via-javascript
        2. We do not have access to location.hash in app-gatekeeper
        https://stackoverflow.com/questions/17744003/get-url-after-in-express-js-middleware-request/43280710
       */
      var cookie = key + "=" + value + "; expires=" + expires + '; path=/; Secure';
      if(sameSiteNoneCompatible) {
        cookie += '; SameSite=None'
      }
      return cookie;
    }

    function setCookie (key, value, days) {
        var date = new Date();
        days = days || 1;
        // Get unix milliseconds at current time plus number of days
        date.setTime(+ date + (days * 86400000)); //24 * 60 * 60 * 1000
        window.document.cookie = getCookieValue(key, value, date.toGMTString());
        return value;
    }

    var delete_cookie = function(key) {
        document.cookie = getCookieValue(key, '', 'Thu, 01 Jan 1970 00:00:01 GMT');
    };

    if (window.location.hash) {
      setCookie('hashRedirectURL', window.location.hash, 1);
    } else {
      delete_cookie('hashRedirectURL');
    }
    window.location.href = '/login' + query;
  </script>
</head>

</html>

HTTP/1.1 200 OK
Server: CloudFront
Content-Type: text/html; charset=utf-8
Content-Length: 1769
Connection: close
Vary: Accept-Encoding
Date: Mon, 22 Dec 2025 07:20:26 GMT
x-request-id: CUSTOMER-AGK-410a-43b7-9556-fec18628edea-t1766388026967
set-cookie: _csrf-prod-us=ex3lCSHCDowISKSbauKjV9nc2CcCixQhmsymhlQKnsVydojA2u64WgT7EQU4Fv1%2BTh9rEY4IeOt6tFYjL%2Bs7b1HvX4BH4BRA3wSz4sn%2BOrDHnYVCtYubHZFCDc0kX6cH5R%2BMZw%3D%3D; Max-Age=2592000; Domain=checkpoint.checkr.com; Path=/; Expires=Wed, 21 Jan 2026 07:20:26 GMT; HttpOnly; Secure; SameSite=Lax
set-cookie: mts-us-east-1=s%3A4h4VAM9ikxoVem5XsHjSFSFU7EzXBX9h.Bp0jRHIykC%2BNonjz0x5zKaJrK30dyPwFqPlqRKgmtCc; Path=/; HttpOnly; Secure; SameSite=None
mtr: us-east-1
etag: W/"6e9-utfYM9hF0DKj1sFqEfGIX70XKak"
x-envoy-upstream-service-time: 30
Access-Control-Expose-Headers: x-request-time, x-envoy-upstream-service-time, x-request-id, server-timing
X-Content-Type-Options: nosniff
X-Request-Time: 0.031;
content-security-policy: frame-ancestors 'self' *.actionaly.com *.aiwyn.ai *.alkami.com *.ameyo.com *.annata.net *.arht.tech *.atlassian.com *.atlassian.net *.brighter.ai *.centripetal.ai *.classtime.com *.clearwaveinc.com *.contentsquare.com *.crm.ondemand.com *.darktrace.com *.doubleoctopus.com *.dynamics.com *.enable.com *.enable.us *.engagingnetworks.net *.flyr.com *.force.com *.forduniversity.com *.gainsight.com *.h-dnet.com *.highspot.com *.hubspot.com *.hubspoteditor.com *.ipresent.com *.ipresentweb.com *.justappraised.com *.live.com *.mediafly.com *.mindtickle.app *.mindtickle.com *.mismo.team *.myfreshworks.com *.numero.ai *.okta.com *.papirfly.com *.pascivite.com *.peoplegrove.com *.propelleraero.com *.reverselogix.com *.rheinberg-pools.de *.rready.com *.salesforce-communities.com *.salesforce-experience.com *.salesforce.com *.schoolmint.com *.schoolstatus.com *.seismic.com *.site.com *.splunkcoach.com *.stripe.partners *.supremeopti.com *.talview.com *.techsee.me *.tenable.com *.theiquest.com *.thermofisher.one *.tracegains.com *.trexgroup.com *.trucesoftware.com *.trustnetinc.com *.twilio.com *.uniphorecloud.com *.unraveldata.com *.upshop.com *.voucherify.io *.wisesystems.com *.zendesk.com *.zoom.us digdeeper.sysdig.com *.showpad.biz *.office.com *.office365.com partnertraining.bluebeam.com *.goto.com enablement.cribl.io *.bitsight.com *.outreach.io *.develop.lightning.force.com *.lightning.force.com *.redhat.com *.everfox.com *.keyfactor.com *.bottomline.com *.keymarkinc.com *.browserstack.com *.prescryptive.com *.lincoln.com *.haasalert.com *.lincolnforyou.com *.firstsource.com *.druva.com *.lookbookhq.com *.cisco.com *.oneidentity.com *.whatfix.com whatfix.com *.climateimpact.com *.graphisoft.com *.huntress.com *.expel.com *.sayari.com *.hellopebl.com *.saludamedical.com *.checkr.com
X-Cache: Miss from cloudfront
Via: 1.1 bad86c53165d48d66c80e183f57163d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: FRA60-P13
X-Amz-Cf-Id: 0cv93TI-a_oXUIoqmOD-DUGJECnHy54oLEtN4g6lL8YI1BEsbTjwAQ==
Strict-Transport-Security: max-age=31536000; includeSubDomains
Server-Timing: cdn-upstream-layer;desc="Origin Shield",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=5,cdn-upstream-fbl;dur=41,cdn-cache-miss,cdn-pop;desc="FRA60-P13",cdn-rid;desc="0cv93TI-a_oXUIoqmOD-DUGJECnHy54oLEtN4g6lL8YI1BEsbTjwAQ==",cdn-downstream-fbl;dur=147


<!DOCTYPE html>
<html xmlns="http://www.w3.org/1999/xhtml" dir="ltr" lang="en-US">

<head>
  <script type="text/javascript" nonce="5e0d52a8">
    var sameSiteNoneCompatible = "true" === "true";
    var query = '';
    var redirectUrl = '/' ;
    if (redirectUrl) {
          query = `?loginredirecturi=${encodeURIComponent(redirectUrl)}`
    }

    function getCookieValue (key, value, expires) {
      /* Note:
        We cannot set 'httpOnly' attribute in this cookie due to below two reasons:
        1. 'httpOnly' cookie can only be set by the server and not by any client side code.
        https://stackoverflow.com/questions/14691654/set-a-cookie-to-httponly-via-javascript
        2. We do not have access to location.hash in app-gatekeeper
        https://stackoverflow.com/questions/17744003/get-url-after-in-express-js-middleware-request/43280710
       */
      var cookie = key + "=" + value + "; expires=" + expires + '; path=/; Secure';
      if(sameSiteNoneCompatible) {
        cookie += '; SameSite=None'
      }
      return cookie;
    }

    function setCookie (key, value, days) {
        var date = new Date();
        days = days || 1;
        // Get unix milliseconds at current time plus number of days
        date.setTime(+ date + (days * 86400000)); //24 * 60 * 60 * 1000
        window.document.cookie = getCookieValue(key, value, date.toGMTString());
        return value;
    }

    var delete_cookie = function(key) {
        document.cookie = getCookieValue(key, '', 'Thu, 01 Jan 1970 00:00:01 GMT');
    };

    if (window.location.hash) {
      setCookie('hashRedirectURL', window.location.hash, 1);
    } else {
      delete_cookie('hashRedirectURL');
    }
    window.location.href = '/login' + query;
  </script>
</head>

</html>

HTTP/1.1 200 OK
Server: CloudFront
Content-Type: text/html; charset=utf-8
Content-Length: 1769
Connection: close
Vary: Accept-Encoding
Date: Mon, 22 Dec 2025 07:20:26 GMT
x-request-id: CUSTOMER-AGK-8f17-47ae-aca1-4042d0b2a9c9-t1766388026890
set-cookie: _csrf-prod-us=rzY7NS5yNWtl4zSqswhFMK20grDA2g7lfwbv4VvE3pjn7XD9QyhYtC0Tbegm8DKDXIJ4wiSmv4l%2FNnm8QOPnWrVu0mfIiayPIGl3Xf1oG6zpSw6j5SW3%2FPIVvvOQ4jGy4hVlVg%3D%3D; Max-Age=2592000; Domain=checkpoint.checkr.com; Path=/; Expires=Wed, 21 Jan 2026 07:20:26 GMT; HttpOnly; Secure; SameSite=Lax
set-cookie: mts-us-east-1=s%3A2K0S4rjp1-gNVeeKvmCxi0pMBtOsYmh0.77VerENKdEitKEJenpFcFCfgZVsS%2B%2Fupdhr%2BE7TCUeA; Path=/; HttpOnly; Secure; SameSite=None
mtr: us-east-1
etag: W/"6e9-utfYM9hF0DKj1sFqEfGIX70XKak"
x-envoy-upstream-service-time: 20
Access-Control-Expose-Headers: x-request-time, x-envoy-upstream-service-time, x-request-id, server-timing
X-Content-Type-Options: nosniff
X-Request-Time: 0.022;
content-security-policy: frame-ancestors 'self' *.actionaly.com *.aiwyn.ai *.alkami.com *.ameyo.com *.annata.net *.arht.tech *.atlassian.com *.atlassian.net *.brighter.ai *.centripetal.ai *.classtime.com *.clearwaveinc.com *.contentsquare.com *.crm.ondemand.com *.darktrace.com *.doubleoctopus.com *.dynamics.com *.enable.com *.enable.us *.engagingnetworks.net *.flyr.com *.force.com *.forduniversity.com *.gainsight.com *.h-dnet.com *.highspot.com *.hubspot.com *.hubspoteditor.com *.ipresent.com *.ipresentweb.com *.justappraised.com *.live.com *.mediafly.com *.mindtickle.app *.mindtickle.com *.mismo.team *.myfreshworks.com *.numero.ai *.okta.com *.papirfly.com *.pascivite.com *.peoplegrove.com *.propelleraero.com *.reverselogix.com *.rheinberg-pools.de *.rready.com *.salesforce-communities.com *.salesforce-experience.com *.salesforce.com *.schoolmint.com *.schoolstatus.com *.seismic.com *.site.com *.splunkcoach.com *.stripe.partners *.supremeopti.com *.talview.com *.techsee.me *.tenable.com *.theiquest.com *.thermofisher.one *.tracegains.com *.trexgroup.com *.trucesoftware.com *.trustnetinc.com *.twilio.com *.uniphorecloud.com *.unraveldata.com *.upshop.com *.voucherify.io *.wisesystems.com *.zendesk.com *.zoom.us digdeeper.sysdig.com *.showpad.biz *.office.com *.office365.com partnertraining.bluebeam.com *.goto.com enablement.cribl.io *.bitsight.com *.outreach.io *.develop.lightning.force.com *.lightning.force.com *.redhat.com *.everfox.com *.keyfactor.com *.bottomline.com *.keymarkinc.com *.browserstack.com *.prescryptive.com *.lincoln.com *.haasalert.com *.lincolnforyou.com *.firstsource.com *.druva.com *.lookbookhq.com *.cisco.com *.oneidentity.com *.whatfix.com whatfix.com *.climateimpact.com *.graphisoft.com *.huntress.com *.expel.com *.sayari.com *.hellopebl.com *.saludamedical.com *.checkr.com
X-Cache: Miss from cloudfront
Via: 1.1 c8441ee313b5204aa32e9bf5a370d536.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: FRA60-P13
X-Amz-Cf-Id: PqQGsGeboQqK5gLCWWBgUcg13iWJ98AO8jtlv9LH1tQ7O48hqSFThA==
Strict-Transport-Security: max-age=31536000; includeSubDomains
Server-Timing: cdn-upstream-layer;desc="Origin Shield",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=4,cdn-upstream-fbl;dur=30,cdn-cache-miss,cdn-pop;desc="FRA60-P13",cdn-rid;desc="PqQGsGeboQqK5gLCWWBgUcg13iWJ98AO8jtlv9LH1tQ7O48hqSFThA==",cdn-downstream-fbl;dur=142


<!DOCTYPE html>
<html xmlns="http://www.w3.org/1999/xhtml" dir="ltr" lang="en-US">

<head>
  <script type="text/javascript" nonce="5e0d52a8">
    var sameSiteNoneCompatible = "true" === "true";
    var query = '';
    var redirectUrl = '/' ;
    if (redirectUrl) {
          query = `?loginredirecturi=${encodeURIComponent(redirectUrl)}`
    }

    function getCookieValue (key, value, expires) {
      /* Note:
        We cannot set 'httpOnly' attribute in this cookie due to below two reasons:
        1. 'httpOnly' cookie can only be set by the server and not by any client side code.
        https://stackoverflow.com/questions/14691654/set-a-cookie-to-httponly-via-javascript
        2. We do not have access to location.hash in app-gatekeeper
        https://stackoverflow.com/questions/17744003/get-url-after-in-express-js-middleware-request/43280710
       */
      var cookie = key + "=" + value + "; expires=" + expires + '; path=/; Secure';
      if(sameSiteNoneCompatible) {
        cookie += '; SameSite=None'
      }
      return cookie;
    }

    function setCookie (key, value, days) {
        var date = new Date();
        days = days || 1;
        // Get unix milliseconds at current time plus number of days
        date.setTime(+ date + (days * 86400000)); //24 * 60 * 60 * 1000
        window.document.cookie = getCookieValue(key, value, date.toGMTString());
        return value;
    }

    var delete_cookie = function(key) {
        document.cookie = getCookieValue(key, '', 'Thu, 01 Jan 1970 00:00:01 GMT');
    };

    if (window.location.hash) {
      setCookie('hashRedirectURL', window.location.hash, 1);
    } else {
      delete_cookie('hashRedirectURL');
    }
    window.location.href = '/login' + query;
  </script>
</head>

</html>

HTTP/1.1 200 OK
Server: CloudFront
Content-Type: text/html; charset=utf-8
Content-Length: 1769
Connection: close
Vary: Accept-Encoding
Date: Mon, 22 Dec 2025 07:20:27 GMT
x-request-id: CUSTOMER-AGK-77c8-43f2-bbac-3eee2d2d527c-t1766388027230
set-cookie: _csrf-prod-us=9HVC96ueK%2FX%2BQYXonBhhEa7qSvWe1IQAYDBitEbBE%2By1nQQwVLbQJfRRzBOe0KtfvzIkU4H7pF7wrxapFpDT6PjxW9JtDTGL02j6d29j%2FPLuzreYpnVvl%2FYjG4lbLezt1478ew%3D%3D; Max-Age=2592000; Domain=checkpoint.checkr.com; Path=/; Expires=Wed, 21 Jan 2026 07:20:27 GMT; HttpOnly; Secure; SameSite=Lax
set-cookie: mts-us-east-1=s%3AdK-W3gLoN2XaYks4B17GBpiKXFPzyTWJ.Z6RgyHbyUNokbXdW85liiZe%2Fs%2B%2BUEKZWFcwhAH0NBs8; Path=/; HttpOnly; Secure; SameSite=None
mtr: us-east-1
etag: W/"6e9-utfYM9hF0DKj1sFqEfGIX70XKak"
x-envoy-upstream-service-time: 35
Access-Control-Expose-Headers: x-request-time, x-envoy-upstream-service-time, x-request-id, server-timing
X-Content-Type-Options: nosniff
X-Request-Time: 0.038;
content-security-policy: frame-ancestors 'self' *.actionaly.com *.aiwyn.ai *.alkami.com *.ameyo.com *.annata.net *.arht.tech *.atlassian.com *.atlassian.net *.brighter.ai *.centripetal.ai *.classtime.com *.clearwaveinc.com *.contentsquare.com *.crm.ondemand.com *.darktrace.com *.doubleoctopus.com *.dynamics.com *.enable.com *.enable.us *.engagingnetworks.net *.flyr.com *.force.com *.forduniversity.com *.gainsight.com *.h-dnet.com *.highspot.com *.hubspot.com *.hubspoteditor.com *.ipresent.com *.ipresentweb.com *.justappraised.com *.live.com *.mediafly.com *.mindtickle.app *.mindtickle.com *.mismo.team *.myfreshworks.com *.numero.ai *.okta.com *.papirfly.com *.pascivite.com *.peoplegrove.com *.propelleraero.com *.reverselogix.com *.rheinberg-pools.de *.rready.com *.salesforce-communities.com *.salesforce-experience.com *.salesforce.com *.schoolmint.com *.schoolstatus.com *.seismic.com *.site.com *.splunkcoach.com *.stripe.partners *.supremeopti.com *.talview.com *.techsee.me *.tenable.com *.theiquest.com *.thermofisher.one *.tracegains.com *.trexgroup.com *.trucesoftware.com *.trustnetinc.com *.twilio.com *.uniphorecloud.com *.unraveldata.com *.upshop.com *.voucherify.io *.wisesystems.com *.zendesk.com *.zoom.us digdeeper.sysdig.com *.showpad.biz *.office.com *.office365.com partnertraining.bluebeam.com *.goto.com enablement.cribl.io *.bitsight.com *.outreach.io *.develop.lightning.force.com *.lightning.force.com *.redhat.com *.everfox.com *.keyfactor.com *.bottomline.com *.keymarkinc.com *.browserstack.com *.prescryptive.com *.lincoln.com *.haasalert.com *.lincolnforyou.com *.firstsource.com *.druva.com *.lookbookhq.com *.cisco.com *.oneidentity.com *.whatfix.com whatfix.com *.climateimpact.com *.graphisoft.com *.huntress.com *.expel.com *.sayari.com *.hellopebl.com *.saludamedical.com *.checkr.com
X-Cache: Miss from cloudfront
Via: 1.1 387be0cf162c8cb6592090f9496a1e92.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: FRA60-P13
X-Amz-Cf-Id: MFVmWuyE3-Yaa8LczRFMqOHiDHIlcoZKHz9O5xo18WyMb90PKvNvEQ==
Strict-Transport-Security: max-age=31536000; includeSubDomains
Server-Timing: cdn-upstream-layer;desc="Origin Shield",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=5,cdn-upstream-fbl;dur=46,cdn-cache-miss,cdn-pop;desc="FRA60-P13",cdn-rid;desc="MFVmWuyE3-Yaa8LczRFMqOHiDHIlcoZKHz9O5xo18WyMb90PKvNvEQ==",cdn-downstream-fbl;dur=153


<!DOCTYPE html>
<html xmlns="http://www.w3.org/1999/xhtml" dir="ltr" lang="en-US">

<head>
  <script type="text/javascript" nonce="5e0d52a8">
    var sameSiteNoneCompatible = "true" === "true";
    var query = '';
    var redirectUrl = '/' ;
    if (redirectUrl) {
          query = `?loginredirecturi=${encodeURIComponent(redirectUrl)}`
    }

    function getCookieValue (key, value, expires) {
      /* Note:
        We cannot set 'httpOnly' attribute in this cookie due to below two reasons:
        1. 'httpOnly' cookie can only be set by the server and not by any client side code.
        https://stackoverflow.com/questions/14691654/set-a-cookie-to-httponly-via-javascript
        2. We do not have access to location.hash in app-gatekeeper
        https://stackoverflow.com/questions/17744003/get-url-after-in-express-js-middleware-request/43280710
       */
      var cookie = key + "=" + value + "; expires=" + expires + '; path=/; Secure';
      if(sameSiteNoneCompatible) {
        cookie += '; SameSite=None'
      }
      return cookie;
    }

    function setCookie (key, value, days) {
        var date = new Date();
        days = days || 1;
        // Get unix milliseconds at current time plus number of days
        date.setTime(+ date + (days * 86400000)); //24 * 60 * 60 * 1000
        window.document.cookie = getCookieValue(key, value, date.toGMTString());
        return value;
    }

    var delete_cookie = function(key) {
        document.cookie = getCookieValue(key, '', 'Thu, 01 Jan 1970 00:00:01 GMT');
    };

    if (window.location.hash) {
      setCookie('hashRedirectURL', window.location.hash, 1);
    } else {
      delete_cookie('hashRedirectURL');
    }
    window.location.href = '/login' + query;
  </script>
</head>

</html>

HTTP/1.1 200 OK
Server: CloudFront
Content-Type: text/html; charset=utf-8
Content-Length: 1769
Connection: close
Vary: Accept-Encoding
Date: Mon, 22 Dec 2025 07:20:26 GMT
x-request-id: CUSTOMER-AGK-5a2c-4790-b571-71080fc3d9ad-t1766388026322
set-cookie: _csrf-prod-us=on1auTZoGKcmnTuMcNuxLnvCG0Mo3OSWUjwTJigavG4cpFGxuJMHN3pz9Ja%2B92SvyXET8Vpwix0vnD4Shywl8l2mIR6UEwz9XIi6WplirFSTaRNal8ofDKNlxFcvTTcL6IUMLQ%3D%3D; Max-Age=2592000; Domain=checkpoint.checkr.com; Path=/; Expires=Wed, 21 Jan 2026 07:20:26 GMT; HttpOnly; Secure; SameSite=Lax
set-cookie: mts-us-east-1=s%3A1zWp7YL6jL_VX_tPwyt0lHIFMBs-5RGJ.%2BhYVEJtqc65ZfhVHH7e7XtbBrwNU%2FrQePP%2FjblLDQGU; Path=/; HttpOnly; Secure; SameSite=None
mtr: us-east-1
etag: W/"6e9-utfYM9hF0DKj1sFqEfGIX70XKak"
x-envoy-upstream-service-time: 80
Access-Control-Expose-Headers: x-request-time, x-envoy-upstream-service-time, x-request-id, server-timing
X-Content-Type-Options: nosniff
X-Request-Time: 0.082;
content-security-policy: frame-ancestors 'self' *.actionaly.com *.aiwyn.ai *.alkami.com *.ameyo.com *.annata.net *.arht.tech *.atlassian.com *.atlassian.net *.brighter.ai *.centripetal.ai *.classtime.com *.clearwaveinc.com *.contentsquare.com *.crm.ondemand.com *.darktrace.com *.doubleoctopus.com *.dynamics.com *.enable.com *.enable.us *.engagingnetworks.net *.flyr.com *.force.com *.forduniversity.com *.gainsight.com *.h-dnet.com *.highspot.com *.hubspot.com *.hubspoteditor.com *.ipresent.com *.ipresentweb.com *.justappraised.com *.live.com *.mediafly.com *.mindtickle.app *.mindtickle.com *.mismo.team *.myfreshworks.com *.numero.ai *.okta.com *.papirfly.com *.pascivite.com *.peoplegrove.com *.propelleraero.com *.reverselogix.com *.rheinberg-pools.de *.rready.com *.salesforce-communities.com *.salesforce-experience.com *.salesforce.com *.schoolmint.com *.schoolstatus.com *.seismic.com *.site.com *.splunkcoach.com *.stripe.partners *.supremeopti.com *.talview.com *.techsee.me *.tenable.com *.theiquest.com *.thermofisher.one *.tracegains.com *.trexgroup.com *.trucesoftware.com *.trustnetinc.com *.twilio.com *.uniphorecloud.com *.unraveldata.com *.upshop.com *.voucherify.io *.wisesystems.com *.zendesk.com *.zoom.us digdeeper.sysdig.com *.showpad.biz *.office.com *.office365.com partnertraining.bluebeam.com *.goto.com enablement.cribl.io *.bitsight.com *.outreach.io *.develop.lightning.force.com *.lightning.force.com *.redhat.com *.everfox.com *.keyfactor.com *.bottomline.com *.keymarkinc.com *.browserstack.com *.prescryptive.com *.lincoln.com *.haasalert.com *.lincolnforyou.com *.firstsource.com *.druva.com *.lookbookhq.com *.cisco.com *.oneidentity.com *.whatfix.com whatfix.com *.climateimpact.com *.graphisoft.com *.huntress.com *.expel.com *.sayari.com *.hellopebl.com *.saludamedical.com *.checkr.com
X-Cache: Miss from cloudfront
Via: 1.1 8b6b9c8098dac83ebe6cded46eac0192.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: FRA60-P13
X-Amz-Cf-Id: zPFvub1FRYzesNsbSH3RRHD1B4w2wlexR54yPbcysi3xn-jcu1iV1A==
Strict-Transport-Security: max-age=31536000; includeSubDomains
Server-Timing: cdn-upstream-layer;desc="Origin Shield",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=5,cdn-upstream-fbl;dur=91,cdn-cache-miss,cdn-pop;desc="FRA60-P13",cdn-rid;desc="zPFvub1FRYzesNsbSH3RRHD1B4w2wlexR54yPbcysi3xn-jcu1iV1A==",cdn-downstream-fbl;dur=197


<!DOCTYPE html>
<html xmlns="http://www.w3.org/1999/xhtml" dir="ltr" lang="en-US">

<head>
  <script type="text/javascript" nonce="5e0d52a8">
    var sameSiteNoneCompatible = "true" === "true";
    var query = '';
    var redirectUrl = '/' ;
    if (redirectUrl) {
          query = `?loginredirecturi=${encodeURIComponent(redirectUrl)}`
    }

    function getCookieValue (key, value, expires) {
      /* Note:
        We cannot set 'httpOnly' attribute in this cookie due to below two reasons:
        1. 'httpOnly' cookie can only be set by the server and not by any client side code.
        https://stackoverflow.com/questions/14691654/set-a-cookie-to-httponly-via-javascript
        2. We do not have access to location.hash in app-gatekeeper
        https://stackoverflow.com/questions/17744003/get-url-after-in-express-js-middleware-request/43280710
       */
      var cookie = key + "=" + value + "; expires=" + expires + '; path=/; Secure';
      if(sameSiteNoneCompatible) {
        cookie += '; SameSite=None'
      }
      return cookie;
    }

    function setCookie (key, value, days) {
        var date = new Date();
        days = days || 1;
        // Get unix milliseconds at current time plus number of days
        date.setTime(+ date + (days * 86400000)); //24 * 60 * 60 * 1000
        window.document.cookie = getCookieValue(key, value, date.toGMTString());
        return value;
    }

    var delete_cookie = function(key) {
        document.cookie = getCookieValue(key, '', 'Thu, 01 Jan 1970 00:00:01 GMT');
    };

    if (window.location.hash) {
      setCookie('hashRedirectURL', window.location.hash, 1);
    } else {
      delete_cookie('hashRedirectURL');
    }
    window.location.href = '/login' + query;
  </script>
</head>

</html>

HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Mon, 22 Dec 2025 07:20:26 GMT
Content-Type: text/html
Content-Length: 167
Connection: close
Location: https://checkpoint.checkr.com/
X-Cache: Redirect from cloudfront
Via: 1.1 4d4680d03dbc233f4f8d4e3d75985c84.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: FRA60-P13
X-Amz-Cf-Id: ueN0Bb3HTGy3eCNqqp4ZEjXVsj7GNswogQSuNGlM5fVvv4e0Rb5i_g==
X-Content-Type-Options: nosniff

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>CloudFront</center>
</body>
</html>

HTTP/1.1 200 OK
Server: CloudFront
Content-Type: text/html; charset=utf-8
Content-Length: 1769
Connection: close
Vary: Accept-Encoding
Date: Mon, 22 Dec 2025 07:20:26 GMT
x-request-id: CUSTOMER-AGK-eba4-4bf2-84ca-e1f54f58c645-t1766388026456
set-cookie: _csrf-prod-us=9kk9XyUpEu2JilJiXVq%2Fdy5661%2F8HVkJ8xbH4hDkWTFliK58dMiO6xWH%2FasfhqI0v4ruoo2CeD6UoCNr6BI4YA6ZMMwwt7%2BJK9Q8QLj18Tdc6AOo7NVsUPsMqnBVjjKJuyG0LA%3D%3D; Max-Age=2592000; Domain=checkpoint.checkr.com; Path=/; Expires=Wed, 21 Jan 2026 07:20:26 GMT; HttpOnly; Secure; SameSite=Lax
set-cookie: mts-us-east-1=s%3A2U3GQgTiwDMkVwY9pHekhbH4b96DYykT.gatOM5vu1UilyVx3KkrgSf8BWnUF73FDavq%2Bvrv3lwA; Path=/; HttpOnly; Secure; SameSite=None
mtr: us-east-1
etag: W/"6e9-utfYM9hF0DKj1sFqEfGIX70XKak"
x-envoy-upstream-service-time: 25
Access-Control-Expose-Headers: x-request-time, x-envoy-upstream-service-time, x-request-id, server-timing
X-Content-Type-Options: nosniff
X-Request-Time: 0.027;
content-security-policy: frame-ancestors 'self' *.actionaly.com *.aiwyn.ai *.alkami.com *.ameyo.com *.annata.net *.arht.tech *.atlassian.com *.atlassian.net *.brighter.ai *.centripetal.ai *.classtime.com *.clearwaveinc.com *.contentsquare.com *.crm.ondemand.com *.darktrace.com *.doubleoctopus.com *.dynamics.com *.enable.com *.enable.us *.engagingnetworks.net *.flyr.com *.force.com *.forduniversity.com *.gainsight.com *.h-dnet.com *.highspot.com *.hubspot.com *.hubspoteditor.com *.ipresent.com *.ipresentweb.com *.justappraised.com *.live.com *.mediafly.com *.mindtickle.app *.mindtickle.com *.mismo.team *.myfreshworks.com *.numero.ai *.okta.com *.papirfly.com *.pascivite.com *.peoplegrove.com *.propelleraero.com *.reverselogix.com *.rheinberg-pools.de *.rready.com *.salesforce-communities.com *.salesforce-experience.com *.salesforce.com *.schoolmint.com *.schoolstatus.com *.seismic.com *.site.com *.splunkcoach.com *.stripe.partners *.supremeopti.com *.talview.com *.techsee.me *.tenable.com *.theiquest.com *.thermofisher.one *.tracegains.com *.trexgroup.com *.trucesoftware.com *.trustnetinc.com *.twilio.com *.uniphorecloud.com *.unraveldata.com *.upshop.com *.voucherify.io *.wisesystems.com *.zendesk.com *.zoom.us digdeeper.sysdig.com *.showpad.biz *.office.com *.office365.com partnertraining.bluebeam.com *.goto.com enablement.cribl.io *.bitsight.com *.outreach.io *.develop.lightning.force.com *.lightning.force.com *.redhat.com *.everfox.com *.keyfactor.com *.bottomline.com *.keymarkinc.com *.browserstack.com *.prescryptive.com *.lincoln.com *.haasalert.com *.lincolnforyou.com *.firstsource.com *.druva.com *.lookbookhq.com *.cisco.com *.oneidentity.com *.whatfix.com whatfix.com *.climateimpact.com *.graphisoft.com *.huntress.com *.expel.com *.sayari.com *.hellopebl.com *.saludamedical.com *.checkr.com
X-Cache: Miss from cloudfront
Via: 1.1 13cf0cb36194e875c127f27844256ba4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: FRA60-P13
X-Amz-Cf-Id: 8Y950aJegUClF7bzX5EUWntQCJEykggJNq1MEHCPVW3OwrH86HsKyw==
Strict-Transport-Security: max-age=31536000; includeSubDomains
Server-Timing: cdn-upstream-layer;desc="Origin Shield",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=4,cdn-upstream-fbl;dur=35,cdn-cache-miss,cdn-pop;desc="FRA60-P13",cdn-rid;desc="8Y950aJegUClF7bzX5EUWntQCJEykggJNq1MEHCPVW3OwrH86HsKyw==",cdn-downstream-fbl;dur=141


<!DOCTYPE html>
<html xmlns="http://www.w3.org/1999/xhtml" dir="ltr" lang="en-US">

<head>
  <script type="text/javascript" nonce="5e0d52a8">
    var sameSiteNoneCompatible = "true" === "true";
    var query = '';
    var redirectUrl = '/' ;
    if (redirectUrl) {
          query = `?loginredirecturi=${encodeURIComponent(redirectUrl)}`
    }

    function getCookieValue (key, value, expires) {
      /* Note:
        We cannot set 'httpOnly' attribute in this cookie due to below two reasons:
        1. 'httpOnly' cookie can only be set by the server and not by any client side code.
        https://stackoverflow.com/questions/14691654/set-a-cookie-to-httponly-via-javascript
        2. We do not have access to location.hash in app-gatekeeper
        https://stackoverflow.com/questions/17744003/get-url-after-in-express-js-middleware-request/43280710
       */
      var cookie = key + "=" + value + "; expires=" + expires + '; path=/; Secure';
      if(sameSiteNoneCompatible) {
        cookie += '; SameSite=None'
      }
      return cookie;
    }

    function setCookie (key, value, days) {
        var date = new Date();
        days = days || 1;
        // Get unix milliseconds at current time plus number of days
        date.setTime(+ date + (days * 86400000)); //24 * 60 * 60 * 1000
        window.document.cookie = getCookieValue(key, value, date.toGMTString());
        return value;
    }

    var delete_cookie = function(key) {
        document.cookie = getCookieValue(key, '', 'Thu, 01 Jan 1970 00:00:01 GMT');
    };

    if (window.location.hash) {
      setCookie('hashRedirectURL', window.location.hash, 1);
    } else {
      delete_cookie('hashRedirectURL');
    }
    window.location.href = '/login' + query;
  </script>
</head>

</html>

HTTP/1.1 200 OK
Server: CloudFront
Content-Type: text/html; charset=utf-8
Content-Length: 1769
Connection: close
Vary: Accept-Encoding
Date: Mon, 22 Dec 2025 07:20:26 GMT
x-request-id: CUSTOMER-AGK-d9f4-459a-a65a-d36dfef63206-t1766388026840
set-cookie: _csrf-prod-us=VMPGtKyeQ%2FZ8Vfd8ZaNiKIY%2FkkBqh2YQ3LrkkXbfXHUz0TOye3%2BflK%2BN%2FlobGPTpqclk9N8aChN6sK9eNfpK3sDpxRRY58Zy21g%2F1YLbI0O%2B9%2B2bOMkIqQ%2FDY%2FLP3gq3IGXamA%3D%3D; Max-Age=2592000; Domain=checkpoint.checkr.com; Path=/; Expires=Wed, 21 Jan 2026 07:20:26 GMT; HttpOnly; Secure; SameSite=Lax
set-cookie: mts-us-east-1=s%3AixRdSANHdnYNbA8FIh9PFfGoPwjV71L0.kljhr5B5EMFBFamRv7aEpg2bmcAYtGn5UweKCqk6Ewk; Path=/; HttpOnly; Secure; SameSite=None
mtr: us-east-1
etag: W/"6e9-utfYM9hF0DKj1sFqEfGIX70XKak"
x-envoy-upstream-service-time: 26
Access-Control-Expose-Headers: x-request-time, x-envoy-upstream-service-time, x-request-id, server-timing
X-Content-Type-Options: nosniff
X-Request-Time: 0.028;
content-security-policy: frame-ancestors 'self' *.actionaly.com *.aiwyn.ai *.alkami.com *.ameyo.com *.annata.net *.arht.tech *.atlassian.com *.atlassian.net *.brighter.ai *.centripetal.ai *.classtime.com *.clearwaveinc.com *.contentsquare.com *.crm.ondemand.com *.darktrace.com *.doubleoctopus.com *.dynamics.com *.enable.com *.enable.us *.engagingnetworks.net *.flyr.com *.force.com *.forduniversity.com *.gainsight.com *.h-dnet.com *.highspot.com *.hubspot.com *.hubspoteditor.com *.ipresent.com *.ipresentweb.com *.justappraised.com *.live.com *.mediafly.com *.mindtickle.app *.mindtickle.com *.mismo.team *.myfreshworks.com *.numero.ai *.okta.com *.papirfly.com *.pascivite.com *.peoplegrove.com *.propelleraero.com *.reverselogix.com *.rheinberg-pools.de *.rready.com *.salesforce-communities.com *.salesforce-experience.com *.salesforce.com *.schoolmint.com *.schoolstatus.com *.seismic.com *.site.com *.splunkcoach.com *.stripe.partners *.supremeopti.com *.talview.com *.techsee.me *.tenable.com *.theiquest.com *.thermofisher.one *.tracegains.com *.trexgroup.com *.trucesoftware.com *.trustnetinc.com *.twilio.com *.uniphorecloud.com *.unraveldata.com *.upshop.com *.voucherify.io *.wisesystems.com *.zendesk.com *.zoom.us digdeeper.sysdig.com *.showpad.biz *.office.com *.office365.com partnertraining.bluebeam.com *.goto.com enablement.cribl.io *.bitsight.com *.outreach.io *.develop.lightning.force.com *.lightning.force.com *.redhat.com *.everfox.com *.keyfactor.com *.bottomline.com *.keymarkinc.com *.browserstack.com *.prescryptive.com *.lincoln.com *.haasalert.com *.lincolnforyou.com *.firstsource.com *.druva.com *.lookbookhq.com *.cisco.com *.oneidentity.com *.whatfix.com whatfix.com *.climateimpact.com *.graphisoft.com *.huntress.com *.expel.com *.sayari.com *.hellopebl.com *.saludamedical.com *.checkr.com
X-Cache: Miss from cloudfront
Via: 1.1 8b6b9c8098dac83ebe6cded46eac0192.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: FRA60-P13
X-Amz-Cf-Id: n9RlUSH00JJeHMIgR6T0XFSfob2M_N3WdAbyR6Cyhn9hbS5tqqwJXA==
Strict-Transport-Security: max-age=31536000; includeSubDomains
Server-Timing: cdn-upstream-layer;desc="Origin Shield",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=3,cdn-upstream-fbl;dur=35,cdn-cache-miss,cdn-pop;desc="FRA60-P13",cdn-rid;desc="n9RlUSH00JJeHMIgR6T0XFSfob2M_N3WdAbyR6Cyhn9hbS5tqqwJXA==",cdn-downstream-fbl;dur=142


<!DOCTYPE html>
<html xmlns="http://www.w3.org/1999/xhtml" dir="ltr" lang="en-US">

<head>
  <script type="text/javascript" nonce="5e0d52a8">
    var sameSiteNoneCompatible = "true" === "true";
    var query = '';
    var redirectUrl = '/' ;
    if (redirectUrl) {
          query = `?loginredirecturi=${encodeURIComponent(redirectUrl)}`
    }

    function getCookieValue (key, value, expires) {
      /* Note:
        We cannot set 'httpOnly' attribute in this cookie due to below two reasons:
        1. 'httpOnly' cookie can only be set by the server and not by any client side code.
        https://stackoverflow.com/questions/14691654/set-a-cookie-to-httponly-via-javascript
        2. We do not have access to location.hash in app-gatekeeper
        https://stackoverflow.com/questions/17744003/get-url-after-in-express-js-middleware-request/43280710
       */
      var cookie = key + "=" + value + "; expires=" + expires + '; path=/; Secure';
      if(sameSiteNoneCompatible) {
        cookie += '; SameSite=None'
      }
      return cookie;
    }

    function setCookie (key, value, days) {
        var date = new Date();
        days = days || 1;
        // Get unix milliseconds at current time plus number of days
        date.setTime(+ date + (days * 86400000)); //24 * 60 * 60 * 1000
        window.document.cookie = getCookieValue(key, value, date.toGMTString());
        return value;
    }

    var delete_cookie = function(key) {
        document.cookie = getCookieValue(key, '', 'Thu, 01 Jan 1970 00:00:01 GMT');
    };

    if (window.location.hash) {
      setCookie('hashRedirectURL', window.location.hash, 1);
    } else {
      delete_cookie('hashRedirectURL');
    }
    window.location.href = '/login' + query;
  </script>
</head>

</html>

HTTP/1.1 200 OK
Server: CloudFront
Content-Type: text/html; charset=utf-8
Content-Length: 1769
Connection: close
Vary: Accept-Encoding
Date: Mon, 22 Dec 2025 07:20:26 GMT
x-request-id: CUSTOMER-AGK-3f0c-4970-b34c-837e7c460e4f-t1766388025993
set-cookie: _csrf-prod-us=TWCf%2BAdmOozcbp7VjLqlZbippKT37LAdDr3M8OvIqQKupg6FGygY84cxGj9jKEXCHNMQAqbPLn95mLthUSSCYdVOn%2BTz0JxUZHZJLd%2FSkTWg1RoD9Lov3cZaJEIVEjHvcX%2B9Fw%3D%3D; Max-Age=2592000; Domain=checkpoint.checkr.com; Path=/; Expires=Wed, 21 Jan 2026 07:20:25 GMT; HttpOnly; Secure; SameSite=Lax
set-cookie: mts-us-east-1=s%3ALNMBI6iVIZRBxtO7irrjDp4CLRRzUgQ7.nTgITt35ABGr2193q5DpXyYcNeCG%2F5iAjgQXHUoycdk; Path=/; HttpOnly; Secure; SameSite=None
mtr: us-east-1
etag: W/"6e9-utfYM9hF0DKj1sFqEfGIX70XKak"
x-envoy-upstream-service-time: 22
Access-Control-Expose-Headers: x-request-time, x-envoy-upstream-service-time, x-request-id, server-timing
X-Content-Type-Options: nosniff
X-Request-Time: 0.024;
content-security-policy: frame-ancestors 'self' *.actionaly.com *.aiwyn.ai *.alkami.com *.ameyo.com *.annata.net *.arht.tech *.atlassian.com *.atlassian.net *.brighter.ai *.centripetal.ai *.classtime.com *.clearwaveinc.com *.contentsquare.com *.crm.ondemand.com *.darktrace.com *.doubleoctopus.com *.dynamics.com *.enable.com *.enable.us *.engagingnetworks.net *.flyr.com *.force.com *.forduniversity.com *.gainsight.com *.h-dnet.com *.highspot.com *.hubspot.com *.hubspoteditor.com *.ipresent.com *.ipresentweb.com *.justappraised.com *.live.com *.mediafly.com *.mindtickle.app *.mindtickle.com *.mismo.team *.myfreshworks.com *.numero.ai *.okta.com *.papirfly.com *.pascivite.com *.peoplegrove.com *.propelleraero.com *.reverselogix.com *.rheinberg-pools.de *.rready.com *.salesforce-communities.com *.salesforce-experience.com *.salesforce.com *.schoolmint.com *.schoolstatus.com *.seismic.com *.site.com *.splunkcoach.com *.stripe.partners *.supremeopti.com *.talview.com *.techsee.me *.tenable.com *.theiquest.com *.thermofisher.one *.tracegains.com *.trexgroup.com *.trucesoftware.com *.trustnetinc.com *.twilio.com *.uniphorecloud.com *.unraveldata.com *.upshop.com *.voucherify.io *.wisesystems.com *.zendesk.com *.zoom.us digdeeper.sysdig.com *.showpad.biz *.office.com *.office365.com partnertraining.bluebeam.com *.goto.com enablement.cribl.io *.bitsight.com *.outreach.io *.develop.lightning.force.com *.lightning.force.com *.redhat.com *.everfox.com *.keyfactor.com *.bottomline.com *.keymarkinc.com *.browserstack.com *.prescryptive.com *.lincoln.com *.haasalert.com *.lincolnforyou.com *.firstsource.com *.druva.com *.lookbookhq.com *.cisco.com *.oneidentity.com *.whatfix.com whatfix.com *.climateimpact.com *.graphisoft.com *.huntress.com *.expel.com *.sayari.com *.hellopebl.com *.saludamedical.com *.checkr.com
X-Cache: Miss from cloudfront
Via: 1.1 387be0cf162c8cb6592090f9496a1e92.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: FRA60-P13
X-Amz-Cf-Id: QTVbsJu2zs-uWcPUm79rymr73DLmYs6BpbAnBrXbL4YIH1YlkMhWjQ==
Strict-Transport-Security: max-age=31536000; includeSubDomains
Server-Timing: cdn-upstream-layer;desc="Origin Shield",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=2,cdn-upstream-fbl;dur=31,cdn-cache-miss,cdn-pop;desc="FRA60-P13",cdn-rid;desc="QTVbsJu2zs-uWcPUm79rymr73DLmYs6BpbAnBrXbL4YIH1YlkMhWjQ==",cdn-downstream-fbl;dur=142


<!DOCTYPE html>
<html xmlns="http://www.w3.org/1999/xhtml" dir="ltr" lang="en-US">

<head>
  <script type="text/javascript" nonce="5e0d52a8">
    var sameSiteNoneCompatible = "true" === "true";
    var query = '';
    var redirectUrl = '/' ;
    if (redirectUrl) {
          query = `?loginredirecturi=${encodeURIComponent(redirectUrl)}`
    }

    function getCookieValue (key, value, expires) {
      /* Note:
        We cannot set 'httpOnly' attribute in this cookie due to below two reasons:
        1. 'httpOnly' cookie can only be set by the server and not by any client side code.
        https://stackoverflow.com/questions/14691654/set-a-cookie-to-httponly-via-javascript
        2. We do not have access to location.hash in app-gatekeeper
        https://stackoverflow.com/questions/17744003/get-url-after-in-express-js-middleware-request/43280710
       */
      var cookie = key + "=" + value + "; expires=" + expires + '; path=/; Secure';
      if(sameSiteNoneCompatible) {
        cookie += '; SameSite=None'
      }
      return cookie;
    }

    function setCookie (key, value, days) {
        var date = new Date();
        days = days || 1;
        // Get unix milliseconds at current time plus number of days
        date.setTime(+ date + (days * 86400000)); //24 * 60 * 60 * 1000
        window.document.cookie = getCookieValue(key, value, date.toGMTString());
        return value;
    }

    var delete_cookie = function(key) {
        document.cookie = getCookieValue(key, '', 'Thu, 01 Jan 1970 00:00:01 GMT');
    };

    if (window.location.hash) {
      setCookie('hashRedirectURL', window.location.hash, 1);
    } else {
      delete_cookie('hashRedirectURL');
    }
    window.location.href = '/login' + query;
  </script>
</head>

</html>

HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Mon, 22 Dec 2025 07:20:25 GMT
Content-Type: text/html
Content-Length: 167
Connection: close
Location: https://checkpoint.checkr.com/
X-Cache: Redirect from cloudfront
Via: 1.1 f126ea1ed848e1f1d4c478d1f814e2c2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: FRA60-P13
X-Amz-Cf-Id: jWMer_zOzv_1Fr2la-QlRYnHlpRpJvIOLgJIji46RdgCV53A6G_uwA==
X-Content-Type-Options: nosniff

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>CloudFront</center>
</body>
</html>

HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Mon, 22 Dec 2025 07:20:26 GMT
Content-Type: text/html
Content-Length: 167
Connection: close
Location: https://checkpoint.checkr.com/
X-Cache: Redirect from cloudfront
Via: 1.1 bad86c53165d48d66c80e183f57163d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: FRA60-P13
X-Amz-Cf-Id: lNxNyaTWpKvmCaU9J438fXhGtdG2IGbA2Nxn9tLXipOUfwSIM-_DHw==
X-Content-Type-Options: nosniff

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>CloudFront</center>
</body>
</html>

HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Mon, 22 Dec 2025 07:20:26 GMT
Content-Type: text/html
Content-Length: 167
Connection: close
Location: https://checkpoint.checkr.com/
X-Cache: Redirect from cloudfront
Via: 1.1 1d665d877b0e9ec09e9ec07fe3b6c7b6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: FRA60-P13
X-Amz-Cf-Id: eNMAjCQCGVLbRpIPAqmdOR2MlI3Cjf9wRZ1y3UmmhUmYm1qt3z4HdA==
X-Content-Type-Options: nosniff

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>CloudFront</center>
</body>
</html>

HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Mon, 22 Dec 2025 07:20:26 GMT
Content-Type: text/html
Content-Length: 167
Connection: close
Location: https://checkpoint.checkr.com/
X-Cache: Redirect from cloudfront
Via: 1.1 d07394c1abd1aadfca4b7709ba1de6a8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: FRA60-P13
X-Amz-Cf-Id: 86gOJGrQ1kbik3e2H4-isW8AD3zCtK5gZJxu3A3jr6srgeaBDgNEcw==
X-Content-Type-Options: nosniff

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>CloudFront</center>
</body>
</html>

HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Mon, 22 Dec 2025 07:20:25 GMT
Content-Type: text/html
Content-Length: 167
Connection: close
Location: https://checkpoint.checkr.com/
X-Cache: Redirect from cloudfront
Via: 1.1 387be0cf162c8cb6592090f9496a1e92.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: FRA60-P13
X-Amz-Cf-Id: 2WdpNqcRVZzJLJq6N6QBaufd2kKeFuh1ay5iz1jN6mGIF5cNIYTbdA==
X-Content-Type-Options: nosniff

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>CloudFront</center>
</body>
</html>

HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Mon, 22 Dec 2025 07:20:26 GMT
Content-Type: text/html
Content-Length: 167
Connection: close
Location: https://checkpoint.checkr.com/
X-Cache: Redirect from cloudfront
Via: 1.1 3e7af1ef389db8ab4a319bd943f95544.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: FRA60-P13
X-Amz-Cf-Id: SdhIxrJgcn60O-udVAJj1E_mLiR0uRWlN-4kUxefwqP1wK017po6dQ==
X-Content-Type-Options: nosniff

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>CloudFront</center>
</body>
</html>

HTTP/1.1 200 OK
Server: CloudFront
Content-Type: text/html; charset=utf-8
Content-Length: 1769
Connection: close
Vary: Accept-Encoding
Date: Mon, 22 Dec 2025 07:20:25 GMT
x-request-id: CUSTOMER-AGK-7532-4e25-82df-f5dbbd6a209f-t1766388025921
set-cookie: _csrf-prod-us=VQBrjX1gi56de86gukLrMRoV3UakukCr93N%2BV0dtAdy%2B9kqfXO5mvO7PpVFWj0IAGNZ1t4FfKFPeqXzhNoMbwMzlztV0QUtmT9DNsTFl5bexnXXWSCnQGY35XxI61tZ4fAQasQ%3D%3D; Max-Age=2592000; Domain=checkpoint.checkr.com; Path=/; Expires=Wed, 21 Jan 2026 07:20:25 GMT; HttpOnly; Secure; SameSite=Lax
set-cookie: mts-us-east-1=s%3AmEbQhAJzraWHlDbBaKPtnH7Woz4XOEO6.Bca8dOBck3YKKZ1IoqldjBqUiIPrDj5hyQtRbMLX%2FTc; Path=/; HttpOnly; Secure; SameSite=None
mtr: us-east-1
etag: W/"6e9-utfYM9hF0DKj1sFqEfGIX70XKak"
x-envoy-upstream-service-time: 22
Access-Control-Expose-Headers: x-request-time, x-envoy-upstream-service-time, x-request-id, server-timing
X-Content-Type-Options: nosniff
X-Request-Time: 0.025;
content-security-policy: frame-ancestors 'self' *.actionaly.com *.aiwyn.ai *.alkami.com *.ameyo.com *.annata.net *.arht.tech *.atlassian.com *.atlassian.net *.brighter.ai *.centripetal.ai *.classtime.com *.clearwaveinc.com *.contentsquare.com *.crm.ondemand.com *.darktrace.com *.doubleoctopus.com *.dynamics.com *.enable.com *.enable.us *.engagingnetworks.net *.flyr.com *.force.com *.forduniversity.com *.gainsight.com *.h-dnet.com *.highspot.com *.hubspot.com *.hubspoteditor.com *.ipresent.com *.ipresentweb.com *.justappraised.com *.live.com *.mediafly.com *.mindtickle.app *.mindtickle.com *.mismo.team *.myfreshworks.com *.numero.ai *.okta.com *.papirfly.com *.pascivite.com *.peoplegrove.com *.propelleraero.com *.reverselogix.com *.rheinberg-pools.de *.rready.com *.salesforce-communities.com *.salesforce-experience.com *.salesforce.com *.schoolmint.com *.schoolstatus.com *.seismic.com *.site.com *.splunkcoach.com *.stripe.partners *.supremeopti.com *.talview.com *.techsee.me *.tenable.com *.theiquest.com *.thermofisher.one *.tracegains.com *.trexgroup.com *.trucesoftware.com *.trustnetinc.com *.twilio.com *.uniphorecloud.com *.unraveldata.com *.upshop.com *.voucherify.io *.wisesystems.com *.zendesk.com *.zoom.us digdeeper.sysdig.com *.showpad.biz *.office.com *.office365.com partnertraining.bluebeam.com *.goto.com enablement.cribl.io *.bitsight.com *.outreach.io *.develop.lightning.force.com *.lightning.force.com *.redhat.com *.everfox.com *.keyfactor.com *.bottomline.com *.keymarkinc.com *.browserstack.com *.prescryptive.com *.lincoln.com *.haasalert.com *.lincolnforyou.com *.firstsource.com *.druva.com *.lookbookhq.com *.cisco.com *.oneidentity.com *.whatfix.com whatfix.com *.climateimpact.com *.graphisoft.com *.huntress.com *.expel.com *.sayari.com *.hellopebl.com *.saludamedical.com *.checkr.com
X-Cache: Miss from cloudfront
Via: 1.1 f5991afb09944a33e3f4ff8b890fa0a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: FRA60-P13
X-Amz-Cf-Id: JcQQiE0vXYUi-tVpSq4iiAjMyDRJ6TvBBZzzopwimo9Gf4YEhOhvKQ==
Strict-Transport-Security: max-age=31536000; includeSubDomains
Server-Timing: cdn-upstream-layer;desc="Origin Shield",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=5,cdn-upstream-fbl;dur=34,cdn-cache-miss,cdn-pop;desc="FRA60-P13",cdn-rid;desc="JcQQiE0vXYUi-tVpSq4iiAjMyDRJ6TvBBZzzopwimo9Gf4YEhOhvKQ==",cdn-downstream-fbl;dur=137


<!DOCTYPE html>
<html xmlns="http://www.w3.org/1999/xhtml" dir="ltr" lang="en-US">

<head>
  <script type="text/javascript" nonce="5e0d52a8">
    var sameSiteNoneCompatible = "true" === "true";
    var query = '';
    var redirectUrl = '/' ;
    if (redirectUrl) {
          query = `?loginredirecturi=${encodeURIComponent(redirectUrl)}`
    }

    function getCookieValue (key, value, expires) {
      /* Note:
        We cannot set 'httpOnly' attribute in this cookie due to below two reasons:
        1. 'httpOnly' cookie can only be set by the server and not by any client side code.
        https://stackoverflow.com/questions/14691654/set-a-cookie-to-httponly-via-javascript
        2. We do not have access to location.hash in app-gatekeeper
        https://stackoverflow.com/questions/17744003/get-url-after-in-express-js-middleware-request/43280710
       */
      var cookie = key + "=" + value + "; expires=" + expires + '; path=/; Secure';
      if(sameSiteNoneCompatible) {
        cookie += '; SameSite=None'
      }
      return cookie;
    }

    function setCookie (key, value, days) {
        var date = new Date();
        days = days || 1;
        // Get unix milliseconds at current time plus number of days
        date.setTime(+ date + (days * 86400000)); //24 * 60 * 60 * 1000
        window.document.cookie = getCookieValue(key, value, date.toGMTString());
        return value;
    }

    var delete_cookie = function(key) {
        document.cookie = getCookieValue(key, '', 'Thu, 01 Jan 1970 00:00:01 GMT');
    };

    if (window.location.hash) {
      setCookie('hashRedirectURL', window.location.hash, 1);
    } else {
      delete_cookie('hashRedirectURL');
    }
    window.location.href = '/login' + query;
  </script>
</head>

</html>

HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Mon, 22 Dec 2025 07:20:25 GMT
Content-Type: text/html
Content-Length: 167
Connection: close
Location: https://checkpoint.checkr.com/
X-Cache: Redirect from cloudfront
Via: 1.1 581599a51772a76c2489c9d094b70226.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: FRA60-P13
X-Amz-Cf-Id: 3-axXSpp8lPgW-0uDZ7GboznM_vCdy3u_oUfjrlGgYZTPbnYwWce7Q==
X-Content-Type-Options: nosniff

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>CloudFront</center>
</body>
</html>

HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Mon, 22 Dec 2025 07:20:25 GMT
Content-Type: text/html
Content-Length: 167
Connection: close
Location: https://checkpoint.checkr.com/
X-Cache: Redirect from cloudfront
Via: 1.1 62adf6efa9de9ec639541ac293f53aa0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: FRA60-P13
X-Amz-Cf-Id: tGhS9RIZ-RcSVLgyh0hDFHlUgA6pQwDAyPjRKDbmrUuTokVurvwdpw==
X-Content-Type-Options: nosniff

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>CloudFront</center>
</body>
</html>

HTTP/1.1 200 OK
Server: CloudFront
Content-Type: text/html; charset=utf-8
Content-Length: 1769
Connection: close
Vary: Accept-Encoding
Date: Mon, 22 Dec 2025 07:20:26 GMT
x-request-id: CUSTOMER-AGK-0a0e-4ee3-a7f7-95f42252bb32-t1766388026022
set-cookie: _csrf-prod-us=XHgKB6AkSm3mTAC0qyVk%2B3Cars38yzHtKceSHynqpWRLO3L9IpXMNapTkA0Ud84OnSbuEORPttb5nLQtCErR7T3Cg2%2BgMzQVE%2FdSIZFOjoZRH%2FZ8cd5%2B5MGW7JJCh%2FXnmUkEew%3D%3D; Max-Age=2592000; Domain=checkpoint.checkr.com; Path=/; Expires=Wed, 21 Jan 2026 07:20:26 GMT; HttpOnly; Secure; SameSite=Lax
set-cookie: mts-us-east-1=s%3AFkOf5bcRTI64XlHAAlkwQcvPux6ZzG3m.uBZh09AZV11dVWfwClcRRpL12FC2JITiqJNO%2FZf8stw; Path=/; HttpOnly; Secure; SameSite=None
mtr: us-east-1
etag: W/"6e9-utfYM9hF0DKj1sFqEfGIX70XKak"
x-envoy-upstream-service-time: 28
Access-Control-Expose-Headers: x-request-time, x-envoy-upstream-service-time, x-request-id, server-timing
X-Content-Type-Options: nosniff
X-Request-Time: 0.030;
content-security-policy: frame-ancestors 'self' *.actionaly.com *.aiwyn.ai *.alkami.com *.ameyo.com *.annata.net *.arht.tech *.atlassian.com *.atlassian.net *.brighter.ai *.centripetal.ai *.classtime.com *.clearwaveinc.com *.contentsquare.com *.crm.ondemand.com *.darktrace.com *.doubleoctopus.com *.dynamics.com *.enable.com *.enable.us *.engagingnetworks.net *.flyr.com *.force.com *.forduniversity.com *.gainsight.com *.h-dnet.com *.highspot.com *.hubspot.com *.hubspoteditor.com *.ipresent.com *.ipresentweb.com *.justappraised.com *.live.com *.mediafly.com *.mindtickle.app *.mindtickle.com *.mismo.team *.myfreshworks.com *.numero.ai *.okta.com *.papirfly.com *.pascivite.com *.peoplegrove.com *.propelleraero.com *.reverselogix.com *.rheinberg-pools.de *.rready.com *.salesforce-communities.com *.salesforce-experience.com *.salesforce.com *.schoolmint.com *.schoolstatus.com *.seismic.com *.site.com *.splunkcoach.com *.stripe.partners *.supremeopti.com *.talview.com *.techsee.me *.tenable.com *.theiquest.com *.thermofisher.one *.tracegains.com *.trexgroup.com *.trucesoftware.com *.trustnetinc.com *.twilio.com *.uniphorecloud.com *.unraveldata.com *.upshop.com *.voucherify.io *.wisesystems.com *.zendesk.com *.zoom.us digdeeper.sysdig.com *.showpad.biz *.office.com *.office365.com partnertraining.bluebeam.com *.goto.com enablement.cribl.io *.bitsight.com *.outreach.io *.develop.lightning.force.com *.lightning.force.com *.redhat.com *.everfox.com *.keyfactor.com *.bottomline.com *.keymarkinc.com *.browserstack.com *.prescryptive.com *.lincoln.com *.haasalert.com *.lincolnforyou.com *.firstsource.com *.druva.com *.lookbookhq.com *.cisco.com *.oneidentity.com *.whatfix.com whatfix.com *.climateimpact.com *.graphisoft.com *.huntress.com *.expel.com *.sayari.com *.hellopebl.com *.saludamedical.com *.checkr.com
X-Cache: Miss from cloudfront
Via: 1.1 2ae88352064bd2ee8746477a8b6fb1da.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: FRA60-P13
X-Amz-Cf-Id: ObkIEb8rkvGOLpQdrmTXC9kKYTsd70pEBo7hyKU4fKqFARMttd7ZhA==
Strict-Transport-Security: max-age=31536000; includeSubDomains
Server-Timing: cdn-upstream-layer;desc="Origin Shield",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=3,cdn-upstream-fbl;dur=37,cdn-cache-miss,cdn-pop;desc="FRA60-P13",cdn-rid;desc="ObkIEb8rkvGOLpQdrmTXC9kKYTsd70pEBo7hyKU4fKqFARMttd7ZhA==",cdn-downstream-fbl;dur=144


<!DOCTYPE html>
<html xmlns="http://www.w3.org/1999/xhtml" dir="ltr" lang="en-US">

<head>
  <script type="text/javascript" nonce="5e0d52a8">
    var sameSiteNoneCompatible = "true" === "true";
    var query = '';
    var redirectUrl = '/' ;
    if (redirectUrl) {
          query = `?loginredirecturi=${encodeURIComponent(redirectUrl)}`
    }

    function getCookieValue (key, value, expires) {
      /* Note:
        We cannot set 'httpOnly' attribute in this cookie due to below two reasons:
        1. 'httpOnly' cookie can only be set by the server and not by any client side code.
        https://stackoverflow.com/questions/14691654/set-a-cookie-to-httponly-via-javascript
        2. We do not have access to location.hash in app-gatekeeper
        https://stackoverflow.com/questions/17744003/get-url-after-in-express-js-middleware-request/43280710
       */
      var cookie = key + "=" + value + "; expires=" + expires + '; path=/; Secure';
      if(sameSiteNoneCompatible) {
        cookie += '; SameSite=None'
      }
      return cookie;
    }

    function setCookie (key, value, days) {
        var date = new Date();
        days = days || 1;
        // Get unix milliseconds at current time plus number of days
        date.setTime(+ date + (days * 86400000)); //24 * 60 * 60 * 1000
        window.document.cookie = getCookieValue(key, value, date.toGMTString());
        return value;
    }

    var delete_cookie = function(key) {
        document.cookie = getCookieValue(key, '', 'Thu, 01 Jan 1970 00:00:01 GMT');
    };

    if (window.location.hash) {
      setCookie('hashRedirectURL', window.location.hash, 1);
    } else {
      delete_cookie('hashRedirectURL');
    }
    window.location.href = '/login' + query;
  </script>
</head>

</html>

HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Mon, 22 Dec 2025 07:20:25 GMT
Content-Type: text/html
Content-Length: 167
Connection: close
Location: https://checkpoint.checkr.com/
X-Cache: Redirect from cloudfront
Via: 1.1 8b6b9c8098dac83ebe6cded46eac0192.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: FRA60-P13
X-Amz-Cf-Id: KkklpOKiW6gzwtj3QB2SApGIKfN_D3utledoJd2w27MOiHNe3RPvUw==
X-Content-Type-Options: nosniff

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>CloudFront</center>
</body>
</html>

HTTP/1.1 200 OK
Server: CloudFront
Content-Type: text/html; charset=utf-8
Content-Length: 1769
Connection: close
Vary: Accept-Encoding
Date: Mon, 22 Dec 2025 07:20:25 GMT
x-request-id: CUSTOMER-AGK-b1d2-41bd-a77c-8a6e6bd68d4d-t1766388025850
set-cookie: _csrf-prod-us=052Q1Xh0HvO1OqjGtw2xgAb37uB3mdX3mGgJvKaLCSKa3BnC2lMj8hSVAckwECrmFa4ou7QmjCHgMGmVqWoBJLlbpGixrfXsbqjHeBT%2BhtjHY4Tp1Z%2Bp60OXKuQEq%2Fki2VndqQ%3D%3D; Max-Age=2592000; Domain=checkpoint.checkr.com; Path=/; Expires=Wed, 21 Jan 2026 07:20:25 GMT; HttpOnly; Secure; SameSite=Lax
set-cookie: mts-us-east-1=s%3A3pARIAXCJRvrqpa-GVuLoOD0fX8pClHD.Aiwq%2BDHpI%2BgSKCmoEuPxYxT4I5NksSrm9f86UZQ87II; Path=/; HttpOnly; Secure; SameSite=None
mtr: us-east-1
etag: W/"6e9-utfYM9hF0DKj1sFqEfGIX70XKak"
x-envoy-upstream-service-time: 32
Access-Control-Expose-Headers: x-request-time, x-envoy-upstream-service-time, x-request-id, server-timing
X-Content-Type-Options: nosniff
X-Request-Time: 0.033;
content-security-policy: frame-ancestors 'self' *.actionaly.com *.aiwyn.ai *.alkami.com *.ameyo.com *.annata.net *.arht.tech *.atlassian.com *.atlassian.net *.brighter.ai *.centripetal.ai *.classtime.com *.clearwaveinc.com *.contentsquare.com *.crm.ondemand.com *.darktrace.com *.doubleoctopus.com *.dynamics.com *.enable.com *.enable.us *.engagingnetworks.net *.flyr.com *.force.com *.forduniversity.com *.gainsight.com *.h-dnet.com *.highspot.com *.hubspot.com *.hubspoteditor.com *.ipresent.com *.ipresentweb.com *.justappraised.com *.live.com *.mediafly.com *.mindtickle.app *.mindtickle.com *.mismo.team *.myfreshworks.com *.numero.ai *.okta.com *.papirfly.com *.pascivite.com *.peoplegrove.com *.propelleraero.com *.reverselogix.com *.rheinberg-pools.de *.rready.com *.salesforce-communities.com *.salesforce-experience.com *.salesforce.com *.schoolmint.com *.schoolstatus.com *.seismic.com *.site.com *.splunkcoach.com *.stripe.partners *.supremeopti.com *.talview.com *.techsee.me *.tenable.com *.theiquest.com *.thermofisher.one *.tracegains.com *.trexgroup.com *.trucesoftware.com *.trustnetinc.com *.twilio.com *.uniphorecloud.com *.unraveldata.com *.upshop.com *.voucherify.io *.wisesystems.com *.zendesk.com *.zoom.us digdeeper.sysdig.com *.showpad.biz *.office.com *.office365.com partnertraining.bluebeam.com *.goto.com enablement.cribl.io *.bitsight.com *.outreach.io *.develop.lightning.force.com *.lightning.force.com *.redhat.com *.everfox.com *.keyfactor.com *.bottomline.com *.keymarkinc.com *.browserstack.com *.prescryptive.com *.lincoln.com *.haasalert.com *.lincolnforyou.com *.firstsource.com *.druva.com *.lookbookhq.com *.cisco.com *.oneidentity.com *.whatfix.com whatfix.com *.climateimpact.com *.graphisoft.com *.huntress.com *.expel.com *.sayari.com *.hellopebl.com *.saludamedical.com *.checkr.com
X-Cache: Miss from cloudfront
Via: 1.1 17cfc7795230164c1f6ea71024045250.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: FRA60-P13
X-Amz-Cf-Id: Su3DwTQG_h-y91AcSVByVeS_Ej25ZerdbVSaJbuXw1yqnuGevQPBGw==
Strict-Transport-Security: max-age=31536000; includeSubDomains
Server-Timing: cdn-upstream-layer;desc="Origin Shield",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=1,cdn-upstream-fbl;dur=39,cdn-cache-miss,cdn-pop;desc="FRA60-P13",cdn-rid;desc="Su3DwTQG_h-y91AcSVByVeS_Ej25ZerdbVSaJbuXw1yqnuGevQPBGw==",cdn-downstream-fbl;dur=150


<!DOCTYPE html>
<html xmlns="http://www.w3.org/1999/xhtml" dir="ltr" lang="en-US">

<head>
  <script type="text/javascript" nonce="5e0d52a8">
    var sameSiteNoneCompatible = "true" === "true";
    var query = '';
    var redirectUrl = '/' ;
    if (redirectUrl) {
          query = `?loginredirecturi=${encodeURIComponent(redirectUrl)}`
    }

    function getCookieValue (key, value, expires) {
      /* Note:
        We cannot set 'httpOnly' attribute in this cookie due to below two reasons:
        1. 'httpOnly' cookie can only be set by the server and not by any client side code.
        https://stackoverflow.com/questions/14691654/set-a-cookie-to-httponly-via-javascript
        2. We do not have access to location.hash in app-gatekeeper
        https://stackoverflow.com/questions/17744003/get-url-after-in-express-js-middleware-request/43280710
       */
      var cookie = key + "=" + value + "; expires=" + expires + '; path=/; Secure';
      if(sameSiteNoneCompatible) {
        cookie += '; SameSite=None'
      }
      return cookie;
    }

    function setCookie (key, value, days) {
        var date = new Date();
        days = days || 1;
        // Get unix milliseconds at current time plus number of days
        date.setTime(+ date + (days * 86400000)); //24 * 60 * 60 * 1000
        window.document.cookie = getCookieValue(key, value, date.toGMTString());
        return value;
    }

    var delete_cookie = function(key) {
        document.cookie = getCookieValue(key, '', 'Thu, 01 Jan 1970 00:00:01 GMT');
    };

    if (window.location.hash) {
      setCookie('hashRedirectURL', window.location.hash, 1);
    } else {
      delete_cookie('hashRedirectURL');
    }
    window.location.href = '/login' + query;
  </script>
</head>

</html>

HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Mon, 22 Dec 2025 07:20:25 GMT
Content-Type: text/html
Content-Length: 167
Connection: close
Location: https://checkpoint.checkr.com/
X-Cache: Redirect from cloudfront
Via: 1.1 c8441ee313b5204aa32e9bf5a370d536.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: FRA60-P13
X-Amz-Cf-Id: NizJKrtEMkqZWAecw8MNtK71QuKVZt322lUll76wmtXkxaGrF9OSqw==
X-Content-Type-Options: nosniff

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>CloudFront</center>
</body>
</html>

HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Mon, 22 Dec 2025 07:20:25 GMT
Content-Type: text/html
Content-Length: 167
Connection: close
Location: https://checkpoint.checkr.com/
X-Cache: Redirect from cloudfront
Via: 1.1 f5991afb09944a33e3f4ff8b890fa0a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: FRA60-P13
X-Amz-Cf-Id: 1aO5A-RcGLUbXbxoC7eGAXZaXHNL6zw_T50EmwyjfX3kLZEHEF4S1g==
X-Content-Type-Options: nosniff

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>CloudFront</center>
</body>
</html>

HTTP/1.1 200 OK
Server: CloudFront
Content-Type: text/html; charset=utf-8
Content-Length: 1769
Connection: close
Vary: Accept-Encoding
Date: Mon, 22 Dec 2025 07:20:25 GMT
x-request-id: CUSTOMER-AGK-46b6-4ac2-bd3a-e06f07233f45-t1766388025887
set-cookie: _csrf-prod-us=ndif5RPIr11lVK0B%2Fr%2F6AmX%2FHmDs9zLyr%2FtN%2FqpO8zvbc9FA1QKUUy3wYQweI7B7GgbshwOkulCMFcESxtyrbgmD1fMP8ciAKpJ9aZCcoSGvmXTF3FDCjZLzqySelx%2BrQ4UyXw%3D%3D; Max-Age=2592000; Domain=checkpoint.checkr.com; Path=/; Expires=Wed, 21 Jan 2026 07:20:25 GMT; HttpOnly; Secure; SameSite=Lax
set-cookie: mts-us-east-1=s%3A2C1zwC9LpZMCYTDq5WJcLDBsurNuCM0D.AAbAaEH912I6cqg2xLaQAZvKpuaSkcffJfTv%2FfJFuMc; Path=/; HttpOnly; Secure; SameSite=None
mtr: us-east-1
etag: W/"6e9-utfYM9hF0DKj1sFqEfGIX70XKak"
x-envoy-upstream-service-time: 27
Access-Control-Expose-Headers: x-request-time, x-envoy-upstream-service-time, x-request-id, server-timing
X-Content-Type-Options: nosniff
X-Request-Time: 0.031;
content-security-policy: frame-ancestors 'self' *.actionaly.com *.aiwyn.ai *.alkami.com *.ameyo.com *.annata.net *.arht.tech *.atlassian.com *.atlassian.net *.brighter.ai *.centripetal.ai *.classtime.com *.clearwaveinc.com *.contentsquare.com *.crm.ondemand.com *.darktrace.com *.doubleoctopus.com *.dynamics.com *.enable.com *.enable.us *.engagingnetworks.net *.flyr.com *.force.com *.forduniversity.com *.gainsight.com *.h-dnet.com *.highspot.com *.hubspot.com *.hubspoteditor.com *.ipresent.com *.ipresentweb.com *.justappraised.com *.live.com *.mediafly.com *.mindtickle.app *.mindtickle.com *.mismo.team *.myfreshworks.com *.numero.ai *.okta.com *.papirfly.com *.pascivite.com *.peoplegrove.com *.propelleraero.com *.reverselogix.com *.rheinberg-pools.de *.rready.com *.salesforce-communities.com *.salesforce-experience.com *.salesforce.com *.schoolmint.com *.schoolstatus.com *.seismic.com *.site.com *.splunkcoach.com *.stripe.partners *.supremeopti.com *.talview.com *.techsee.me *.tenable.com *.theiquest.com *.thermofisher.one *.tracegains.com *.trexgroup.com *.trucesoftware.com *.trustnetinc.com *.twilio.com *.uniphorecloud.com *.unraveldata.com *.upshop.com *.voucherify.io *.wisesystems.com *.zendesk.com *.zoom.us digdeeper.sysdig.com *.showpad.biz *.office.com *.office365.com partnertraining.bluebeam.com *.goto.com enablement.cribl.io *.bitsight.com *.outreach.io *.develop.lightning.force.com *.lightning.force.com *.redhat.com *.everfox.com *.keyfactor.com *.bottomline.com *.keymarkinc.com *.browserstack.com *.prescryptive.com *.lincoln.com *.haasalert.com *.lincolnforyou.com *.firstsource.com *.druva.com *.lookbookhq.com *.cisco.com *.oneidentity.com *.whatfix.com whatfix.com *.climateimpact.com *.graphisoft.com *.huntress.com *.expel.com *.sayari.com *.hellopebl.com *.saludamedical.com *.checkr.com
X-Cache: Miss from cloudfront
Via: 1.1 c8441ee313b5204aa32e9bf5a370d536.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: FRA60-P13
X-Amz-Cf-Id: oHSssgt98r2Oi_PGghBpDQSSRGJASXzyiNTN41PFibOF4vSXUoWFHQ==
Strict-Transport-Security: max-age=31536000; includeSubDomains
Server-Timing: cdn-upstream-layer;desc="Origin Shield",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=3,cdn-upstream-fbl;dur=37,cdn-cache-miss,cdn-pop;desc="FRA60-P13",cdn-rid;desc="oHSssgt98r2Oi_PGghBpDQSSRGJASXzyiNTN41PFibOF4vSXUoWFHQ==",cdn-downstream-fbl;dur=144


<!DOCTYPE html>
<html xmlns="http://www.w3.org/1999/xhtml" dir="ltr" lang="en-US">

<head>
  <script type="text/javascript" nonce="5e0d52a8">
    var sameSiteNoneCompatible = "true" === "true";
    var query = '';
    var redirectUrl = '/' ;
    if (redirectUrl) {
          query = `?loginredirecturi=${encodeURIComponent(redirectUrl)}`
    }

    function getCookieValue (key, value, expires) {
      /* Note:
        We cannot set 'httpOnly' attribute in this cookie due to below two reasons:
        1. 'httpOnly' cookie can only be set by the server and not by any client side code.
        https://stackoverflow.com/questions/14691654/set-a-cookie-to-httponly-via-javascript
        2. We do not have access to location.hash in app-gatekeeper
        https://stackoverflow.com/questions/17744003/get-url-after-in-express-js-middleware-request/43280710
       */
      var cookie = key + "=" + value + "; expires=" + expires + '; path=/; Secure';
      if(sameSiteNoneCompatible) {
        cookie += '; SameSite=None'
      }
      return cookie;
    }

    function setCookie (key, value, days) {
        var date = new Date();
        days = days || 1;
        // Get unix milliseconds at current time plus number of days
        date.setTime(+ date + (days * 86400000)); //24 * 60 * 60 * 1000
        window.document.cookie = getCookieValue(key, value, date.toGMTString());
        return value;
    }

    var delete_cookie = function(key) {
        document.cookie = getCookieValue(key, '', 'Thu, 01 Jan 1970 00:00:01 GMT');
    };

    if (window.location.hash) {
      setCookie('hashRedirectURL', window.location.hash, 1);
    } else {
      delete_cookie('hashRedirectURL');
    }
    window.location.href = '/login' + query;
  </script>
</head>

</html>