Configure HSTS for an application
The HTTP strict transport security (HSTS)
web security policy mechanism helps to protect websites against attacks by forcing users
to communicate with servers through HTTPS only. When users send HTTP requests to the
server, it responds with a
Strict-Transport-Security
response header
for a length of time specified in seconds. In the response header this length of time is
depicted as the max-age
attribute.