Software /
code /
prosody-modules
File
mod_strict_https/README.markdown @ 4674:1b701f208b1b
mod_tls_policy: Switch method of checking for TLS-encrypted connection
Might deprecate 'session.encrypted', not sure if it's used anywhere
else. This is likely more compatible anyhow.
author | Kim Alvefur <zash@zash.se> |
---|---|
date | Thu, 09 Sep 2021 20:27:14 +0200 |
parent | 1803:4d73a1a6ba68 |
child | 5414:0c8e6269ea38 |
line wrap: on
line source
--- labels: summary: HTTP Strict Transport Security ... Introduction ============ This module implements [HTTP Strict Transport Security](https://tools.ietf.org/html/rfc6797) and responds to all non-HTTPS requests with a `301 Moved Permanently` redirect to the HTTPS equivalent of the path. Configuration ============= Add the module to the `modules_enabled` list and optionally configure the specific header sent. modules_enabled = { ... "strict_https"; } hsts_header = "max-age=31556952" Compatibility ============= ------- -------------- trunk Works 0.9 Works 0.8 Doesn't work ------- --------------