Skip to content

G
gitlab-ce
Commit ec28d48a authored by Caleb Cooper's avatar Caleb Cooper Committed by Russell Dickenson
Browse files
Options

HSTS section for GitLab Pages

parent 684ef443
Hide whitespace changes
Inline Side-by-side
Showing with 8 additions and 0 deletions
doc/administration/pages/index.md
View file @ ec28d48a
...@@ -545,6 +545,14 @@ After an archive reaches `zip_cache_expiration`, it's marked as expired and remo ...@@ -545,6 +545,14 @@ After an archive reaches `zip_cache_expiration`, it's marked as expired and remo
![ZIP cache configuration](img/zip_cache_configuration.png) ![ZIP cache configuration](img/zip_cache_configuration.png)
### HTTP Strict Transport Security (HSTS) support
HTTP Strict Transport Security (HSTS) can be enabled through the `gitlab_pages['headers']` configuration option. HSTS informs browsers that the website they are visiting should always provide its content over HTTPS to ensure that attackers cannot force subsequent connections to happen unencrypted. It can also improve loading speed of pages as it prevents browsers from attempting to connect over an unencrypted HTTP channel before being redirected to HTTPS.
```ruby
gitlab_pages['headers'] = ['Strict-Transport-Security: max-age=63072000']
```
## Activate verbose logging for daemon ## Activate verbose logging for daemon
Follow the steps below to configure verbose logging of GitLab Pages daemon. Follow the steps below to configure verbose logging of GitLab Pages daemon.
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment
GitLab Nexedi Edition | About GitLab | About Nexedi | 沪ICP备2021021310号-2 | 沪ICP备2021021310号-7