Enabling HTTP Strict Transport Security - 8.0

Talend Real-Time Big Data Platform Installation Guide for Linux

Version
8.0
Language
English (United States)
EnrichDitaval
Real-Time Big Data Platform for Linux
Product
Talend Real-Time Big Data Platform
Module
Talend Activity Monitoring Console
Talend Administration Center
Talend Artifact Repository
Talend CommandLine
Talend Data Preparation
Talend Data Stewardship
Talend ESB
Talend Identity and Access Management
Talend Installer
Talend JobServer
Talend Log Server
Talend Runtime
Talend SAP RFC Server
Talend Studio
Content
Installation and Upgrade

HTTP Strict Transport Security (HSTS) is a web server directive that informs user agents and web browsers how to handle its connection through a response header sent at the very beginning and back to the browser.

Talend Administration Center supports HSTS to instruct web browsers to only access the application using HTTPS.

To enable HSTS when accessing Talend Administration Center, the following conditions must be satisfied:

  • A valid certificate which must be non self signed but verified by Certificate Authority.
  • Redirect from HTTP to HTTPS on the same host, if you are listening on port 8080.
  • Serve all sub-domains over HTTPS. In particular, you must support HTTPS for the WWW sub-domain if a DNS record for that sub-domain exists.
  • The first access to Talend Administration Center resource should be with the HTTPS protocol. Browsers will then remember that the site should only be accessed using HTTPS in the following 2 years.