You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Admins can't switch off HTTPS anyway since it breaks federation, so AFAICT we might as well serve HTTP Strict Transport Security headers? At least without includeSubdomains. I think this won't cause any problems but I want to think about it more.
Could include this in the 6.0 release just in case it causes problems, though it should be backwards-compatible. (Labeling semver-major so it shows up when I query for things that need to go in for 6.0.)
The text was updated successfully, but these errors were encountered:
Admins can't switch off HTTPS anyway since it breaks federation, so AFAICT we might as well serve HTTP Strict Transport Security headers? At least without
includeSubdomains
. I think this won't cause any problems but I want to think about it more.Could include this in the 6.0 release just in case it causes problems, though it should be backwards-compatible. (Labeling semver-major so it shows up when I query for things that need to go in for 6.0.)
The text was updated successfully, but these errors were encountered: