forked from pivotal-cf/docs-pcf-install
-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy path_haproxy_hsts_config_cloudform.html.md.erb
More file actions
7 lines (7 loc) · 1.05 KB
/
Copy path_haproxy_hsts_config_cloudform.html.md.erb
File metadata and controls
7 lines (7 loc) · 1.05 KB
1
2
3
4
5
6
7
If you want to force browsers to use HTTPS when making requests to HAProxy, select **Enable** in the **HAProxy support for HSTS** field, and complete the following optional configuration steps:

<ol>
<li>(Optional) **Enter a Max Age in Seconds** for the HSTS request. By default, the age is set to one year. HAProxy will force HTTPS requests from browsers for the duration of this setting.</li>
<li>(Optional) Select the **Include Subdomains** checkbox to force browsers to use HTTPS requests for all component subdomains.</li>
<li>(Optional) Select the **Enable Preload** checkbox to force instances of Google Chrome, Firefox, and Safari that access your HAProxy to refer to their built-in lists of known hosts that require HTTPS, of which HAProxy is one. This ensures that the first contact a browser has with your HAProxy is an HTTPS request, even if the browser has not yet received an HSTS header from HAProxy.</li>
</ol>