Option for HSTS
Hey there, I would add an option for HSTS-feature. So customers can enable HSTS by theirown. It would be easy. You just need 3 more columns in the domain table: hsts_enable|boolean, hsts_max_age:integer, hsts_includeSubdomains:boolean
In frontend/panel just following is needed under the Domain-SSL-options, if SSL is enabled: Checkbox: Enable HSTS Input number field: HSTS Max Age (Allowed: 0-x) Checkbox: IncludeSubdomains
After enabling HSTS-feature, http-request must be redirected to https and https sending following header in the apache-config file (nginx something similar): Header always set Strict-Transport-Security "max-age=THEMAXAGE; {if includeSubdomainsEnabled}includeSubdomains;{endif}"
Would be nice to see such feature in next release :)