Le 02/04/2014 00:16, Bertrand Jacquin a écrit :
What is adding the Vary and Strict-Transport-Security headers in this
second case ?
A missing 'http-response set-header' in the previous copy and paste.
http-response set-header Vary Accept-Encoding
http-response set-header Strict-Transport-Security max-age=16070400 if {
ssl_fc }
Sorry but we're certainly missing something with your configuration.
Even if those "set-header" were added, they can't be applied to the
redirect with the configuration provided in the example.
It makes me think there is a second level of proxy in your test. Am I
wrong ?
--
Cyril Bonté
