TechQA.

How to Enable HSTS in Play framework 2.3.x using scala code?

691 views Asked by At

I have a Play Framework 2.3.6 version app running on Sbt, using Sbt SSL endpoint with scala coding...

I would like to see the (hsts)strict transport security response in the headers.

I am trying locally in postman using the URL http ://localhost:9000

How to write the code?

What's the best way to that? for play 2.3

I searched in play blog and understood that Redirection filters are supported on 2.6 and above, but I am using only 2.3.x version.

Is there any best solution provided to test locally in postman using HTTP . so that I can see the hsts headers in the response.

Note : I have HTTP blocked in production mode. I can use only https in production.

scala ssl playframework-2.3 hsts strict-transport-security
Original Q&A
1

There are 1 answers

0
Waseem Pasha On

Add this line to your application.conf:

play.filters.https.strictTransportSecurity="max-age=31536000; includeSubDomains"

You can use curl request to check the same:

curl -s -D- https://localhost:9000/{{api}} | grep -i Strict

Reference: https://www.namecheap.com/support/knowledgebase/article.aspx/9711/38/how-to-check-if-hsts-is-enabled

Related Questions in SCALA

Related Questions in SSL

Related Questions in PLAYFRAMEWORK-2.3

Related Questions in HSTS

Related Questions in STRICT-TRANSPORT-SECURITY

Popular Questions

Popular Tags

javascript python java c# php android html jquery c++ css ios sql mysql r reactjs node.js arrays c asp.net json

Trending Questions