Skip to content

Add HSTS header to healthz endpoint response #825

New issue
New issue
Open
Open
Add HSTS header to healthz endpoint response#825

Description

@rishabh-11

rishabh-11
openedon Jun 6, 2023

How to categorize this issue?

/area robustness
/kind enhancement
/priority 4

What would you like to be added:
Add HSTS header to the HTTP response from the health endpoint of mcm. Refer etcd-backup-restore for an example.

Why is this needed:
The HSTS header is absent from the HTTP response from the health endpoint, making it vulnerable to man-in-the-middle attacks.

Activity

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Metadata

Assignees

No one assigned

    Labels

    area/robustnessRobustness, reliability, resilience relatedkind/enhancementEnhancement, improvement, extensionlifecycle/rottenNobody worked on this for 12 months (final aging stage)priority/4Priority (lower number equals higher priority)

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions