On Sun, Jun 19, 2016 at 11:51:28AM +0200, Thomas Glanzmann wrote:

Hi there,

> I would like to send the header:
>
> add_header Strict-Transport-Security "max-age=31536000; includeSubDomains";
>
> Despite the 401 Unauthorized request. Is that possible?

http://nginx.org/r/add_header

That suggests that you can use an "always" parameter.

Is that appropriate in this case?

If not, then possibly the third-party "headers more" module may be useful.

f
--
Francis Daly francis@daoine.org

_______________________________________________
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx