Title: HTTP Security header Last modified: October 1, 2019 --- # HTTP Security header * Resolved [billy44](https://wordpress.org/support/users/billy44/) * (@billy44) * [6 years, 8 months ago](https://wordpress.org/support/topic/http-security-header/) * Hello, * I’ve installed Autoptimize yesterday and I find it very efficient. But to day I am trying to add HTTP security headers in the .htaccess but it doesn’t seem to affect anything. I tried many different way and checked with [https://securityheaders.com](https://securityheaders.com) but still not working. * Is there any relation between this issue and Autoptimize? * Thank you. Valentin Viewing 5 replies - 1 through 5 (of 5 total) * Plugin Author [Optimizing Matters](https://wordpress.org/support/users/optimizingmatters/) * (@optimizingmatters) * [6 years, 8 months ago](https://wordpress.org/support/topic/http-security-header/#post-11986568) * no, not related to AO as far as I can tell. * have a nice day, frank * Thread Starter [billy44](https://wordpress.org/support/users/billy44/) * (@billy44) * [6 years, 8 months ago](https://wordpress.org/support/topic/http-security-header/#post-11986788) * Thank you. Should I use the advanced settings in the htaccess maybe? * Plugin Author [Optimizing Matters](https://wordpress.org/support/users/optimizingmatters/) * (@optimizingmatters) * [6 years, 8 months ago](https://wordpress.org/support/topic/http-security-header/#post-11986813) * Err, not sure what you mean, but generally speaking AO has it’s own .htacces in `wp-content/cache/autoptimize` where expiry and compression configuration is done (attempted rather, as we might not be on Apache and even if overrides might be forbidden). The only thing that affects the contents of that .htaccess is the “serve as static files” options. * hope this clarifies, frank * Thread Starter [billy44](https://wordpress.org/support/users/billy44/) * (@billy44) * [6 years, 8 months ago](https://wordpress.org/support/topic/http-security-header/#post-11988782) * Thank you Franck. I unable “serve as static file” option but still the same situation, the security http headers code are not loading. I put the code in the root .htaccess. Should I put code in the AO .htaccess file? * Thank you. * Plugin Author [Optimizing Matters](https://wordpress.org/support/users/optimizingmatters/) * (@optimizingmatters) * [6 years, 8 months ago](https://wordpress.org/support/topic/http-security-header/#post-11988797) * > Should I put code in the AO .htaccess file? * no, I think that serves no purpose; the security headers are to be added to the HTML response, which AO’s htaccess has not impact on. Viewing 5 replies - 1 through 5 (of 5 total) The topic ‘HTTP Security header’ is closed to new replies. * ![](https://ps.w.org/autoptimize/assets/icon-256X256.png?rev=2211608) * [Autoptimize](https://wordpress.org/plugins/autoptimize/) * [Frequently Asked Questions](https://wordpress.org/plugins/autoptimize/#faq) * [Support Threads](https://wordpress.org/support/plugin/autoptimize/) * [Active Topics](https://wordpress.org/support/plugin/autoptimize/active/) * [Unresolved Topics](https://wordpress.org/support/plugin/autoptimize/unresolved/) * [Reviews](https://wordpress.org/support/plugin/autoptimize/reviews/) * 5 replies * 2 participants * Last reply from: [Optimizing Matters](https://wordpress.org/support/users/optimizingmatters/) * Last activity: [6 years, 8 months ago](https://wordpress.org/support/topic/http-security-header/#post-11988797) * Status: resolved