Enabling HTTP Strict Transport Security
HTTP Strict Transport Security (HSTS) is a web server directive that informs user agents and web browsers how to handle its connection through a response header sent at the very beginning and back to the browser.
Talend Administration Center supports HSTS to instruct web browsers to only access the application using HTTPS.
To enable HSTS when accessing Talend Administration Center, the following conditions must be satisfied:
- A valid certificate which must be non self signed but verified by Certificate Authority.
- Redirect from HTTP to HTTPS on the same host, if you are listening on port 8080.
- Serve all sub-domains over HTTPS. In particular, you must support HTTPS for the WWW sub-domain if a DNS record for that sub-domain exists.
- The first access to Talend Administration Center resource should be with the HTTPS protocol. Browsers will then remember that the site should only be accessed using HTTPS in the following 2 years.