search

MachUpskillingFY17 / JabbR-Core

Modern edition of JabbR chat client using .NET Core
MIT License
7 stars 8 forks source link

Implement HTTP Strict-Transport-Security #156

Closed adamtuliper closed 7 years ago

adamtuliper commented 7 years ago

All chat communications should be forced SSL.

adamtuliper commented 7 years ago

Investigate NSewceb Nuget package. Our resulting header should have max-age. Strict-Transport-Security: max-age=15768000

(https://www.nuget.org/packages/NWebsec.AspNetCore.Middleware/)