Force HTST cache reset from webserver

Question

I'm using nginx as reverse proxy and nodejs for the application. I want to know is there any solutions to force HSTS or HTTPS Strict Transport Security from webserver?

I don't want to ask users to reset their browser cache because its really technical and they don't know how to address this issue.

I can't understand how title is relevant to post? Have you missed something? — Alexey Ten, Feb 20 '15 at 07:19
@AlexeyTen nope, I wrote all I need. I need a solution to reset HTST cache from webserver (e.g. nginx) — Afshin Mehrabani, Feb 20 '15 at 10:12
I guess, you need `max-age=0` http://tools.ietf.org/html/rfc6797#section-6.1.1 — Alexey Ten, Feb 20 '15 at 10:19
@AlexeyTen well, `max-age` resets browser cache but its nothing to do with `HTST` cache. — Afshin Mehrabani, Feb 20 '15 at 11:34

score 1 · Accepted Answer · answered Mar 01 '15 at 06:58

1

You can use max-age = 0 to reset cache and force HTST cache reset.

In nginx:

server {
   ...
   add_header  Strict-Transport-Security "max-age=0;";
   ...
}

answered Mar 01 '15 at 06:58

Afshin Mehrabani

33,262
29
136
201

Force HTST cache reset from webserver

1 Answers1