Skip to content

fix: Force enable HSTS#4802

Open
pablocarle wants to merge 4 commits into
v3.x.xfrom
reboot/fix/hsts-current
Open

fix: Force enable HSTS#4802
pablocarle wants to merge 4 commits into
v3.x.xfrom
reboot/fix/hsts-current

Conversation

@pablocarle

Copy link
Copy Markdown
Contributor

Description

Following the drop of support of http unsecure connections (AT-TLS is supported), this PR aims to make sure the Strict-Transport-Security header HSTS is set always.

Follows #4052

Type of change

  • fix: Bug fix (non-breaking change which fixes an issue)

Checklist:

  • My code follows the style guidelines of this project
  • PR title conforms to commit message guideline ## Commit Message Structure Guideline
  • I have commented my code, particularly in hard-to-understand areas. In JS I did provide JSDoc
  • I have made corresponding changes to the documentation
  • My changes generate no new warnings
  • I have added tests that prove my fix is effective or that my feature works
  • New and existing unit tests pass locally with my changes
  • The java tests in the area I was working on leverage @nested annotations
  • Any dependent changes have been merged and published in downstream modules

Pablo Carle added 2 commits July 10, 2026 14:57
Signed-off-by: Pablo Carle <pablo.carle@broadcom.com>
Signed-off-by: Pablo Carle <pablo.carle@broadcom.com>
…-CA32HA.yml

Signed-off-by: Pablo Carle <pablocarle@users.noreply.github.com>
@pull-request-size pull-request-size Bot added size/M and removed size/L labels Jul 10, 2026
…HstsServerHttpHeadersWriter.java

Signed-off-by: Pablo Carle <pablocarle@users.noreply.github.com>
@sonarqubecloud

Copy link
Copy Markdown

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

Sensitive Sensitive change that requires peer review size/M

Projects

Development

Successfully merging this pull request may close these issues.

1 participant