's-Hertogenbosch: Request replace certificate and change HSTS header meldingen.s-hertogenbosch.nl
someren opened this issue · comments
Amy commented
For meldingen.s-hertogenbosch.nl is a new certificate available. Could the old one be replaced as soon as possible?
Please contact me for the certificate and password.
Another request is to change the Strict-Transport-Security Header (HSTS) to the best practise for max-age.
Currently the max-age = 15724800 but the best practise is one year = 31536000.
Thank you!
CBuiVNG commented
setting (max age) in front-end config: add_header Strict-Transport-Security "max-age=31536000; includeSubDomains" always;