Hi Andrzej,
Am 08.08.2016 um 10:02 schrieb Andrzej Sobociński:
Hello.
I have issue with haproxy 1.6 (meaby that is bug)
My config in backend section:
acl acl_address_xxx hdr(host) -i xxx.domain.com
http-response set-header Strict-Transport-Security "max-age=31536000;
includeSubDomains; preload;" if acl_address_xxx
and haproxy don’t adding HSTS if http-response have a condition.
curl -s -D - https://xxx.domain.com -o /dev/null | grep Strict
none
Without coundition HSTS work perfect (http-response set-header
Strict-Transport-Security "max-age=31536000; includeSubDomains;
preload;") like under:
curl -s -D - https://xxx.domain.com -o /dev/null | grep Strict
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload;
Could you told me what im doing wrong?
Thx for reply
Please post your frontend/backend configuration (as complete as
possible) and the output of haproxy -vv.
Thanks,
Lukas
