Details
-
Improvement
-
Resolution: Fixed
-
Major
-
None
-
1
Description
We need a way to optionally set a HTTP Secure Transport Header (HSTS), through REST API.
The HTTP Strict Transport Security header informs the browser that it should never load a site using HTTP and should automatically convert all attempts to access the site using HTTP to HTTPS requests instead. HSTS exists to remove the need for the common, insecure practice of redirecting users from http:// to https:// URLs.
Attachments
Issue Links
For Gerrit Dashboard: MB-47096 | ||||||
---|---|---|---|---|---|---|
# | Subject | Branch | Project | Status | CR | V |
156383,7 | MB-47096: REST API for setting "Strict-Transport-Security" | cheshire-cat | ns_server | Status: MERGED | +2 | +1 |
156443,1 | Merge remote-tracking branch 'couchbase/cheshire-cat' | master | ns_server | Status: MERGED | +2 | +1 |
156637,1 | MB-47096: REST API for setting "Strict-Transport-Security" | master | ns_server | Status: ABANDONED | 0 | 0 |
165402,2 | MB-48058:[BP] REST API for setting "Strict-Transport-Security" | mad-hatter | ns_server | Status: MERGED | +2 | +1 |