HTTP Strict Transport Security (HSTS) in Oracle WebLogic Server (Doc ID 2146367.1)

Last updated on FEBRUARY 16, 2017

Applies to:

Oracle WebLogic Server - Version 10.3.6 and later
Information in this document applies to any platform.

Goal

HTTP Strict Transport Security (HSTS) is a web security policy mechanism where a web server declares that complying user agents (such as a browser) to use secure connections only (such as SSL). This is communicated by the server to the user agent via an HTTP response header field named "Strict-Transport-Security".

A question is - how to enable HTTP Strict Transport Security (HSTS) in WebLogic 12.2.1?
 

Solution

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms