Due to HSTS requirement, static files serving from Appengine Java must be served HTTPS only (i.,e., redirect from HTTP to HTTPS).
HTTPS only is possible in web.xml descriptor, but appengine-web.xml does not support it. Is there any way?
Asked
Active
Viewed 122 times
1 Answers
0
There is no need to modify appengine-web.xml. Simply set a security constraint in web.xml to /*, and all files will be served over HTTPS.
Andrei Volgin
- 40,755
- 6
- 49
- 58