Uploaded image for project: 'Confluence Data Center'
  1. Confluence Data Center
  2. CONFSERVER-81829

HSTS configuration not working in confluence 8.0.2

XMLWordPrintable

      Issue Summary

      This is reproducible on Data Center: Yes

      Steps to Reproduce

      1. Configure confluence on SSL
      2. Follow KB - how-to-enable-and-configure-http-strict-transport-security-hsts-response-header-on-confluence
      3. Attached web.xml with modifications

      Expected Results

      • Need to see strict transport security header, when accessing the instance

      Actual Results

      Headers not visible

      Workaround

      Currently there is no known workaround for this behavior. A workaround will be added here when available

      Important note for the fix

      Please read the updated documentation for configuring HSTS response headers.

      https://confluence.atlassian.com/confkb/how-to-enable-and-configure-http-strict-transport-security-hsts-response-header-on-confluence-1071813084.html

        1. web.xml
          173 kB

              rlau@atlassian.com Richard Lau
              4b0790dbfd74 Jetendra Ivaturi (Inactive)
              Votes:
              2 Vote for this issue
              Watchers:
              8 Start watching this issue

                Created:
                Updated:
                Resolved: