HTTPS-only and HSTS

From EPrints Documentation
Revision as of 15:41, 27 September 2017 by Tomasz.neugebauer@concordia.ca (Talk | contribs)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search

[Category:Authentication]]

Google Best Practices for HTTPS

That following are the best practice specified by Google (https://support.google.com/webmasters/answer/6073543?hl=en&ref_topic=6001951)

  • HSTS Headers on HTTPS
  • No “Mixed Content” warnings/errors
  • Links point to HTTPS locations
  • 301 Redirects from HTTP to HTTPS