Skip to content

Enable HTTP Strict Transport Security

Modify ssl template to enable HTSTS.

server {
    listen 443 ssl;
    [...]
    add_header Strict-Transport-Security "max-age=31536000; includeSubDomains; preload" always;
    [...]
}