Browser Cache Settings not getting set

  • Resolved Andrew Saunders

    (@aydh)


    5 years, 7 months ago

    Hi, I’ve set some of the expiry and security headers, but they’re not coming through.

    Specifically the expiries aren’t coming through when tested by GTMetrix

    And
    * Strict-Transport-Security
    * Content-Security-Policy
    * X-Content-Type-Options
    * Referrer-Policy
    aren’t coming through wnen tested by securityheaders.com

    The page I need help with: [log in to see the link]

Viewing 1 replies (of 1 total)
  • Plugin Contributor Marko Vasiljevic

    (@vmarko)

    5 years, 7 months ago

    Hello @aydh

    Thank you for your inquiry and I am happy to assist you with this.
    Have you enabled “Set expires header” and “cache-control header” in Performance>Browser Cache?
    * Strict-Transport-Security:
    When enabled The time, in seconds (should be defined under the “Expires Header Lifetime” box of “Media & Other Files”), that the browser should remember that this site is only to be accessed using HTTPS. This only affects the site’s main domain.
    * Content-Security-Policy:
    This needs to be defined when enabled for what you wan to use Content-Security-Policy for like base-URI: etc.
    * X-Content-Type-Options:
    This should be working as expected when selected. I’ve tested this and it works just fine. Make sure you don’t have any rules in .htaccess or httpd.conf that might conflict.
    * Referrer-Policy:
    When enabled, you need to select the Directive: for example same-origin or no-referrer-when downgrade.
    I hope this helps!
    Thanks!

Viewing 1 replies (of 1 total)

The topic ‘Browser Cache Settings not getting set’ is closed to new replies.