From a9f4613cac3092bdd3e19c8409241482d589d3d6 Mon Sep 17 00:00:00 2001 From: Florian Scholz Date: Thu, 14 Nov 2024 15:44:07 +0100 Subject: [PATCH 1/2] Add HSTS --- features/draft/spec/rfc6797.yml | 6 ------ features/hsts.yml | 6 ++++++ features/{draft/spec/rfc6797.yml.dist => hsts.yml.dist} | 2 +- 3 files changed, 7 insertions(+), 7 deletions(-) delete mode 100644 features/draft/spec/rfc6797.yml create mode 100644 features/hsts.yml rename features/{draft/spec/rfc6797.yml.dist => hsts.yml.dist} (92%) diff --git a/features/draft/spec/rfc6797.yml b/features/draft/spec/rfc6797.yml deleted file mode 100644 index 56995fc0f47..00000000000 --- a/features/draft/spec/rfc6797.yml +++ /dev/null @@ -1,6 +0,0 @@ -draft_date: 2024-09-09 -name: HTTP Strict Transport Security (HSTS) -description: TODO -spec: https://www.rfc-editor.org/rfc/rfc6797 -compat_features: - - http.headers.Strict-Transport-Security diff --git a/features/hsts.yml b/features/hsts.yml new file mode 100644 index 00000000000..b163c8f3e26 --- /dev/null +++ b/features/hsts.yml @@ -0,0 +1,6 @@ +name: HTTP Strict Transport Security (HSTS) +description: The `Strict-Transport-Security` HTTP response header (HSTS) informs browsers that the site should only be accessed using HTTPS, and that any future attempts to access it using HTTP should automatically be converted to HTTPS. +spec: https://www.rfc-editor.org/rfc/rfc6797 +group: security +compat_features: + - http.headers.Strict-Transport-Security diff --git a/features/draft/spec/rfc6797.yml.dist b/features/hsts.yml.dist similarity index 92% rename from features/draft/spec/rfc6797.yml.dist rename to features/hsts.yml.dist index 5a5a3d3f75a..e1dc77ed64b 100644 --- a/features/draft/spec/rfc6797.yml.dist +++ b/features/hsts.yml.dist @@ -1,4 +1,4 @@ -# Generated from: rfc6797.yml +# Generated from: hsts.yml # Do not edit this file by hand. Edit the source file instead! status: From e558f8502fb2a3890fb313c05357e271dc86269b Mon Sep 17 00:00:00 2001 From: Florian Scholz Date: Mon, 18 Nov 2024 19:02:34 +0100 Subject: [PATCH 2/2] Update features/hsts.yml Co-authored-by: Daniel D. Beck --- features/hsts.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/features/hsts.yml b/features/hsts.yml index b163c8f3e26..57b57ddf016 100644 --- a/features/hsts.yml +++ b/features/hsts.yml @@ -1,5 +1,5 @@ -name: HTTP Strict Transport Security (HSTS) -description: The `Strict-Transport-Security` HTTP response header (HSTS) informs browsers that the site should only be accessed using HTTPS, and that any future attempts to access it using HTTP should automatically be converted to HTTPS. +name: HTTP Strict Transport Security +description: The `Strict-Transport-Security` HTTP response header informs browsers that the site should only be accessed using HTTPS, and that any future attempts to access it using HTTP should automatically be converted to HTTPS. Also known as HSTS. spec: https://www.rfc-editor.org/rfc/rfc6797 group: security compat_features: