Y
Hacker News
new
|
ask
|
show
|
jobs
by
daeken
4632 days ago
Yes, this is the case, but
only
in the first request. As soon as an HTTP user agent gets such an HSTS header, it will only communicate via HTTPS until
max-age
expires.
1 comments
davis_m
4632 days ago
Only if the browser supports HSTS. Many do not, especially mobile browsers.
link