LH HSTS Plugin

This plugin send the proper headers for full ssl security. For more information on what this is and why it is important visit: http://en.wikipedia.org/wiki/HTTP_Strict_Transport_Security

The options are preset to enable browsers to preload the HSTS directive but can be overwritten by filters which are clearly documented in the code.

Did you find this plugin helpful? Please consider writing a review.

To update the max-age settings, add the following code to your functions.php

add_filter('lh_hsts_max_age', 'modify_ls_hsts_max_age_func'); function modify_ls_hsts_max_age_func( $max_age ){ return false; } ` 
To update the subdomain settings, add the following code to your functions.php

add_filter(‘lh_hsts_subdomain’, ‘modify_ls_hsts_subdomain_func’);

function modify_ls_hsts_subdomain_func( $subdomain ){
return false;
}
`

To update the preload setting, add the following code to your functions.php

add_filter('lh_hsts_preload', 'modify_ls_hsts_preload_func'); function modify_ls_hsts_preload_func( $preload ){ return false; } ` 
To update the redirect setting, add the following code to your functions.php

add_filter(‘lh_hsts_redirect’, ‘modify_ls_hsts_redirect_func’);

function modify_ls_hsts_redirect_func( $redirect ){
return false;
}
`

1. Upload the entire lh-hsts folder to the /wp-content/plugins/ directory.
2. Activate the plugin through the ‘Plugins’ menu in WordPress.

How do I change the behaviour of this plugin?

Through filters, all of which are commented in the code and will be documented below.

1.00 – February 28, 2016

• Initial release

1.10 – March 28, 2016

• Use correct domain

1.11 – April 02, 2017

• Added class exists check

1.20 – May 11, 2017

• Just made everything look pretty and structured

1.21 – May 24, 2017

• Bug fix

1.22 – January 10, 2018

• Singleton pattern

1.23 – March 04, 2018

• Fixed fiulter name

1.24 – August 19, 2018

• get_home_url and other minor stuff

1.25 – May 16, 2019

• pprevent direct access to the php file, minor security, and compatibility bump