<!doctype html>
<html lang="es">
  <head>
    <meta charset="UTF-8" />
    <link rel="icon" type="image/svg+xml" href="/vite.svg" />
    <meta name="viewport" content="width=device-width, initial-scale=1.0, user-scalable=no, viewport-fit=cover, interactive-widget=resizes-content" />
    
    <!-- Cache Optimization Meta Tags -->
    <meta http-equiv="Cache-Control" content="public, max-age=31536000, immutable">
    <meta http-equiv="Expires" content="31536000">
    <meta name="msapplication-config" content="none">
    
    <!-- Preload Critical Resources -->
    <link rel="modulepreload" href="data:application/octet-stream;base64,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" crossorigin>
    <link rel="preconnect" href="https://firestore.googleapis.com">
    <link rel="preconnect" href="https://firebasestorage.googleapis.com">
    <link rel="preconnect" href="https://identitytoolkit.googleapis.com">
    <link rel="preconnect" href="https://securetoken.googleapis.com">
    <link rel="preconnect" href="https://fonts.googleapis.com">
    <link rel="preconnect" href="https://fonts.gstatic.com" crossorigin>
    <link rel="preconnect" href="https://apis.google.com">
    <link rel="preconnect" href="https://accounts.google.com">
    <!-- Cargar fuentes críticas -->
    <link href="https://fonts.googleapis.com/css2?family=Montserrat:wght@400;600&display=swap" rel="stylesheet">
    <link href="https://fonts.googleapis.com/css2?family=Inter:wght@300;400;500;600;700;800&display=swap" rel="stylesheet">
    
    <!-- PWA Meta Tags -->
    <meta name="application-name" content="CharlotMed">
    <meta name="description" content="Servicios profesionales de limpieza médica">
    <meta name="theme-color" content="#2563eb">
    <link rel="manifest" href="/manifest.json">
    
    <!-- iOS Safari Meta Tags -->
    <meta name="apple-mobile-web-app-capable" content="yes">
    <meta name="apple-mobile-web-app-status-bar-style" content="default">
    <meta name="apple-mobile-web-app-title" content="CharlotMed">
    <link rel="apple-touch-icon" href="/vite.svg">
    <meta name="format-detection" content="telephone=no">
    
    <!-- Android Chrome Meta Tags -->
    <meta name="mobile-web-app-capable" content="yes">
    
    <!-- Permissions Policy para Safari -->
    <meta http-equiv="Permissions-Policy" content="geolocation=*, camera=*, microphone=*">
    
    <!-- Content Security Policy optimizado para Firebase y servicios externos (dev + prod) -->
    <meta http-equiv="Content-Security-Policy" content="
      default-src 'self';
      script-src 'self' 'unsafe-inline' 'unsafe-eval' data: blob:
        https://js.stripe.com
        https://www.googletagmanager.com
        https://www.google-analytics.com
        https://apis.google.com
        https://accounts.google.com
        https://www.gstatic.com;
      script-src-elem 'self' 'unsafe-inline' data: blob:
        https://js.stripe.com
        https://www.googletagmanager.com
        https://www.google-analytics.com
        https://apis.google.com
        https://accounts.google.com
        https://www.gstatic.com;
      style-src 'self' 'unsafe-inline'
        https://fonts.googleapis.com
        https://www.gstatic.com;
      style-src-elem 'self' 'unsafe-inline'
        https://fonts.googleapis.com
        https://www.gstatic.com;
      font-src 'self' data:
        https://fonts.gstatic.com
        https://www.gstatic.com;
      img-src 'self' data: blob:
        https://images.unsplash.com
        https://firebasestorage.googleapis.com
        https://www.googletagmanager.com
        https://www.google-analytics.com;
      connect-src 'self' data:
        https://firestore.googleapis.com
        https://firebasestorage.googleapis.com
        https://firebase.googleapis.com
        https://identitytoolkit.googleapis.com
        https://securetoken.googleapis.com
        https://firebaseinstallations.googleapis.com
        https://apis.google.com
        https://accounts.google.com
        https://www.googletagmanager.com
        https://www.google-analytics.com
        https://region1.google-analytics.com
        https://europe-west1-app-cleaning-9c173.cloudfunctions.net
        https://nominatim.openstreetmap.org
        https://maps.googleapis.com
        https://api.stripe.com
        ws: wss:;
      frame-src 'self'
        https://accounts.google.com
        https://apis.google.com
        https://js.stripe.com
        https://app-cleaning-9c173.firebaseapp.com
        https://app-cleaning-9c173.web.app
        https://charlotmed.web.app
        https://charlotmed.firebaseapp.com;
      object-src 'none';
      base-uri 'self';
      form-action 'self';
    " />
    
    <title>CharloMed - Servicios de Limpieza</title>
    <script type="module" crossorigin src="/assets/index-B_E2mH7A.js"></script>
    <link rel="stylesheet" crossorigin href="/assets/index-DAkXdfGn.css">
  </head>
  <body>
    <div id="root"></div>
  </body>
</html>