Skip to content

Add the ability to configure HSTS in NetBox #15644

New issue
New issue
Closed
#15683
Closed
Add the ability to configure HSTS in NetBox#15644
#15683
Assignees
Julio-Oliveira-Encora
Labels
status: acceptedThis issue has been accepted for implementationtype: featureIntroduction of new functionality to the application
@sarhaynes

Description

@sarhaynes
sarhaynes
opened on Apr 5, 2024

NetBox version

v3.7.3

Feature type

New functionality

Proposed functionality

Currently NetBox does not have configuration entries for HSTS. In order to enable this security feature it is necessary to set the following Django settings (see https://docs.djangoproject.com/en/5.0/ref/middleware/#http-strict-transport-security)

The recommend change to settings.py:

SECURE_HSTS_SECONDS =  getattr(configuration, 'SECURE_HSTS_SECONDS', 0) 
SECURE_HSTS_INCLUDE_SUBDOMAINS = getattr(configuration, 'SECURE_HSTS_INCLUDE_SUBDOMAINS', False)
SECURE_HSTS_PRELOAD = getattr(configuration, 'SECURE_HSTS_PRELOAD', False)

Use case

Add the ability to enable HSTS in configuration.py.

Database changes

None

External dependencies

None

Metadata

Metadata

Assignees

Labels

status: acceptedThis issue has been accepted for implementationtype: featureIntroduction of new functionality to the application

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions