HSTS for opensourcesurvey.org
lgarron opened this issue · 2 comments
lgarron commented
opensourcesurvey.org supports HTTPS as of #96. It would be great to go all the way with preloaded HSTS: https://hstspreload.org/?domain=opensourcesurvey.org
GH Pages supports HSTS headers, but it's not available externally yet so a Hubber like me needs to set it manually. Would it be alright for me to set the header to Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
?
mlinksva commented
Please do!
lgarron commented