Microsoft.AspNetCore.HttpsPolicy

Extension methods for the HSTS middleware.

Adds middleware for using HSTS, which adds the Strict-Transport-Security header.

The instance this method extends.

Extension methods for the HSTS middleware.

Adds HSTS services.

The for adding services. A delegate to configure the .

Extension methods for the HttpsRedirection middleware.

Adds middleware for redirecting HTTP Requests to HTTPS.

The instance this method extends. The for HttpsRedirection.

Extension methods for the HttpsRedirection middleware.

Adds HTTPS redirection services.

The for adding services. A delegate to configure the .

Enables HTTP Strict Transport Security (HSTS) See https://tools.ietf.org/html/rfc6797.

Initialize the HSTS middleware.

Initialize the HSTS middleware.

Invoke the middleware.

The .

Options for the Hsts Middleware

Sets the max-age parameter of the Strict-Transport-Security header.

Max-age is required; defaults to 30 days. See: https://tools.ietf.org/html/rfc6797#section-6.1.1

Enables includeSubDomain parameter of the Strict-Transport-Security header.

See: https://tools.ietf.org/html/rfc6797#section-6.1.2

Sets the preload parameter of the Strict-Transport-Security header.

Preload is not part of the RFC specification, but is supported by web browsers to preload HSTS sites on fresh install. See https://hstspreload.org/.

A list of host names that will not add the HSTS header.

Middleware that redirects non-HTTPS requests to an HTTPS URL.

Initializes .

Initializes .

Invokes the HttpsRedirectionMiddleware.

Options for the HTTPS Redirection Middleware.

The status code used for the redirect response. The default is 307.

The HTTPS port to be added to the redirected URL.

If the HttpsPort is not set, we will try to get the HttpsPort from the following: 1. HTTPS_PORT environment variable 2. IServerAddressesFeature If that fails then the middleware will log a warning and turn off.