search

SURFscz / SRAM-deploy

Deploy scripts for the SCZ
Apache License 2.0
5 stars 5 forks source link

add HSTS header to demo.sram.surf.nl #503

Closed baszoetekouw closed 6 months ago

mrvanes commented 8 months ago

https://github.com/SURFscz/demos/commit/39f7d6e56458aa0c98ee916fb69f26abfdd2047a https://github.com/SURFscz/SRAM-deploy/commit/15b63bddac71d102529b468db6de8bde58aef8f6

baszoetekouw commented 6 months ago 
╰─▶ curl -I https://demo.sram.surf.nl
HTTP/2 302
cache-control: no-cache, no-store, max-age=0
content-type: text/html; charset=iso-8859-1
date: Tue, 30 Apr 2024 09:35:36 GMT
location: https://proxy.sram.surf.nl/saml2sp/OIDC/authorization?response_type=code&scope=openid%20profile%20uid&client_id=APP-ABAE3E2A-33AF-4824-B0D1-3FD72BB06236&state=3X29FNe7mRwEf3in0RWL_nZz-Hk&redirect_uri=https%3A%2F%2Fdemo.sram.surf.nl%2Fredirect_uri&nonce=55mfaQNQBFhNoIeh4D16uQ8waXGaA2BTq08eJOUBH_w&response_mode=query
server: Apache/2.4.41 (Ubuntu)
set-cookie: mod_auth_openidc_state_3X29FNe7mRwEf3in0RWL_nZz-Hk=eyJhbGciOiAiZGlyIiwgImVuYyI6ICJBMjU2...e50GwFQ; Path=/; Secure; HttpOnly; SameSite=None
strict-transport-security: max-age=31536000; includeSubDomains; preload