Create
cancel
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in

Is there a way to change the HSTS header strict-transport-security?

Martin Dykes
I'm New Here
I'm New Here
Those new to the Atlassian Community have posted less than three times. Give them a warm welcome!
October 20, 2022

Hi,

is there a way to change the strict-transport-security when using a custom domain for status page?

 

Thanks,

Martin

1 answer

1 accepted

0 votes
Answer accepted
John M
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
October 20, 2022

Hi Martin,

There is no way to change the HTTP Strict-Transport-Security response header, as we do not provide direct access to it. 

henrik_wejdmark February 26, 2024

Hi,

can you please add this as a feature suggestion as lacking HSTS goes against best practice and does show up as an issue for SOC compliance.

//Cheers Henrik

John M
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
February 26, 2024

Hi @henrik_wejdmark ,

We have STATUS-596 logged for the ability to customize the Statuspage HSTS headers.

henrik_wejdmark February 27, 2024

That's great that it's tracked, unfortunately STATUS-596 is not public so I can't see or watch it.

//Cheers Henrik

John M
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
February 29, 2024

Hi @henrik_wejdmark ,

The Statuspage project is not public at this time so none of the issues from that project are available. It is possible that the project may be made public at some point for easier tracking. 

henrik_wejdmark February 29, 2024

I understand you need to filter which issues you show publicly, but Statuspage shows plenty public issues, unfortunately not STATUS-596.

See: https://jira.atlassian.com/projects/STATUS/issues/STATUS-729?filter=allopenissues 

//Cheers

      Henrik

John M
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
February 29, 2024

Hi @henrik_wejdmark ,

You're right, I meant to say that the feature requests from Statuspage are not public, but the bugs are made public. Since STATUS-596 is a feature request, it wont show up until/unless there is a change to the visibility for feature requests. 

Eliot Cohen
I'm New Here
I'm New Here
Those new to the Atlassian Community have posted less than three times. Give them a warm welcome!
May 23, 2024

Hey @John M !

We just had this come up with one of our customers doing a security review of us as a vendor. Can you please add us/me as a customer on the feature request STATUS-596?

Thanks,

Eliot

John M
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
May 23, 2024

Hi @Eliot Cohen ,

Sure, we can do that, however we need to link it to a support ticket with your customer information. If you could please open a Statuspage support ticket here:

https://support.atlassian.com/contact/#/

And just state that you would like to be added to STATUS-596, we can get that taken care of for you. 

Suggest an answer

Log in or Sign up to answer
DEPLOYMENT TYPE
CLOUD
TAGS
AUG Leaders

Atlassian Community Events