Property Manager Name: HTTP Strict Transport Security
Applies HTTP Strict Transport Security (HSTS), disallowing insecure HTTP traffic. Apply this to hostnames managed with Standard TLS or Enhanced TLS certificates.
Options
- enable (boolean): Applies HSTS to this set of requests.
- maxAge (enum string): Specifies the duration for which to apply HSTS for new browser connections, either TEN_MINS, ONE_DAY, ONE_MONTH, THREE_MONTHS, SIX_MONTHS, or ONE_YEAR. A value of ZERO_MINS effectively disables HSTS, without affecting any existing browser connections.
- includeSubDomains (boolean): When enabled, apply HSTS to all subdomains.
- preload (boolean): When enabled, adds this domain to the browser’s preload list. You still need to declare the domain at hstspreload.org.
- redirecrt (boolean): When enabled, redirects all HTTP requests to HTTPS.
- redirectStatusCode (numeric enum): With redirect enabled, specifies a 301 or 302 response code.