Hello Attila Bukor, Kudu Jenkins, Andrew Wong, Abhishek Chennaka,
I'd like you to reexamine a change. Please visit
http://gerrit.cloudera.org:8080/18253
to look at the new patch set (#5).
Change subject: [webserver] optional HSTS header for HTTPS responses
......................................................................
[webserver] optional HSTS header for HTTPS responses
With this patch, the embedded Kudu webserver adds the HTTP strict
transport security (HSTS) header 'Strict-Transport-Security' with
the 'max-age' attribute as specified by a positive value of the
--webserver_hsts_max_age_seconds flag for responses sent from HTTPS
(i.e. TLS-protected) endpoints. The HSTS header isn't added to the
responses sent by plain HTTP. Adding the HSTS header isn't enabled
by default since it could make other plain HTTP endpoints at the
same node/hostname inaccessible: use it with care!
To enable adding the HSTS header for HTTPS responses, set the
--webserver_hsts_max_age_seconds flag to a value greater than zero.
A new test added to cover the newly introduced functionality.
Change-Id: Id844b9588196b3d608765d0f16f5caec1c414d41
---
M src/kudu/server/webserver-test.cc
M src/kudu/server/webserver.cc
2 files changed, 52 insertions(+), 0 deletions(-)
git pull ssh://gerrit.cloudera.org:29418/kudu refs/changes/53/18253/5
--
To view, visit http://gerrit.cloudera.org:8080/18253
To unsubscribe, visit http://gerrit.cloudera.org:8080/settings
Gerrit-Project: kudu
Gerrit-Branch: master
Gerrit-MessageType: newpatchset
Gerrit-Change-Id: Id844b9588196b3d608765d0f16f5caec1c414d41
Gerrit-Change-Number: 18253
Gerrit-PatchSet: 5
Gerrit-Owner: Alexey Serbin <[email protected]>
Gerrit-Reviewer: Abhishek Chennaka <[email protected]>
Gerrit-Reviewer: Alexey Serbin <[email protected]>
Gerrit-Reviewer: Andrew Wong <[email protected]>
Gerrit-Reviewer: Attila Bukor <[email protected]>
Gerrit-Reviewer: Kudu Jenkins (120)
