Hi,
Glad to help.
Cheers.
On Sunday, February 8, 2015, deltaxfx wrote:
> dewanggaba, your hint was correct. Even though I am using the NGINX config
> supplied by ownCloud, there was still a setting in the admin panel to force
> HTTPS, which also sends an HSTS header. But the kicker is, if forc
dewanggaba, your hint was correct. Even though I am using the NGINX config
supplied by ownCloud, there was still a setting in the admin panel to force
HTTPS, which also sends an HSTS header. But the kicker is, if force HTTPS
(in PHP) is set to off (and just forced through the server config), ownClo
Very interesting. I am using ownCloud. I thought something like that may be
the case and did a couple quick searches that didn't turn up anything, but
I'll give it another look now. Thanks for the hint!
Posted at Nginx Forum:
http://forum.nginx.org/read.php?2,256508,256512#msg-256512
___
I've got same experience with Laravel framework. They have another
configuration to set header like that.
What web apps framework do you use?
On Sunday, February 8, 2015, deltaxfx wrote:
> I have a domain setup with SSL and I am trying to get HSTS headers working.
> I have done this in NGINX be
I have a domain setup with SSL and I am trying to get HSTS headers working.
I have done this in NGINX before with no problem. On this new domain I can't
seem to get HSTS working properly. Not sure what I am doing wrong.
I have the following in the server block for the SSL server:
add_header Strict
