Strict-Transport-Security HTTP Header
A HSTS Policy informing the HTTP client how long to cache the HTTPS only policy and whether this applies to subdomains.
Accepted ValuesMultiple values are allowed, seperated by a semi-colon. Some options take a value, and that is preceded with an = after the option.
max-age applies to subdomains as well.
The time a browser should remember a site can only be accessed with https (seconds).max-age=4
Use Google's preloading strict transport security.
Strict-Transport-Security: includesubdomains; preload; max-age=4
Enter a Strict-Transport-Security header below to parse and return details about it.