Added the HPKP report-uri setting to the WordPress Security headers module.
Found a silly bug for the HPKP max-age setting, thanks to using Scott Helme’s report-uri analysis tool during testing.
Simon Waters
personal website of Simon Waters
Added the HPKP report-uri setting to the WordPress Security headers module.
Found a silly bug for the HPKP max-age setting, thanks to using Scott Helme’s report-uri analysis tool during testing.
You might also want to add the “preload” parameter to the header.
I manually did it in my copy of your plugin, but it would be nice if it was included in updates.
Required for when I used https://hstspreload.appspot.com/ to submit for Google for browser inclusion.
Added, the support page on WordPress.org is best place for feature requests or bug reports.