Comments (4)
For preloaded sites, we purposely don't show whether a site satisfies current requirements, because not all the same requirements apply to all sites on the list.
You can check for an individual site at the API endpoint:
https://hstspreload.appspot.com/api/v2/preloadable?domain=github.com
Once we have a database to keep track of which requirements apply to which site, we should show this data.
from hstspreload.org.
Thanks. I'm looking forward to it.
from hstspreload.org.
Once we have a database to keep track of which requirements apply to which site, we should show this data.
We can now query for bulk preloaded sites efficiently:
Line 22 in b83053d
from hstspreload.org.
For https://twitter.com/vcsjones/status/910328524954902533
(I apologize ahead of the time that the JS code is not super-clean.)
We actually always race the preloadable
and status
checks:
hstspreload.org/frontend/static/js/form.js
Lines 38 to 42 in 78bc18e
Right now, we always ignore the preloadable
result if the status
is preloaded
. You have to tell it to show the issues from the preloadable
outcome here:
hstspreload.org/frontend/static/js/form.js
Lines 236 to 238 in 78bc18e
You'll also want to update the status string to explain "preloaded, but missing out on best practices (technically, requirements)" when there are issues (errors or warnings).
Now, that will have the problem that you don't know if a domain is bulk preloaded, so the string will show even for domains where the requirements don't apply. I suggest attaching this to the status
result by extending the DomainState struct with a boolean bulk
field based on the protected
value, calculated from api.bulkPreloaded
like at:
hstspreload.org/api/domain_handlers.go
Line 54 in 78bc18e
You should then be able to read the value in JS and decide to show the issues/custom status based on that.
from hstspreload.org.
Related Issues (20)
- Set unique user-agent HOT 3
- Fix HTML issues HOT 1
- Minify the HTML, JavaScript, and CSS code HOT 4
- Site status and eligibility test doesn't recognize my 301 HOT 3
- The validation button is still too small HOT 8
- Error 502 HOT 1
- Where is the list for hsts preload domain ? HOT 2
- [Feature Request] Support .name Top Level Domain with third level registration HOT 1
- Is a 302 redirect honored? HOT 4
- Cannot pick up the HSTS headers HOT 2
- Unexplained warning HOT 1
- Use GitHub Actions for CI
- "Error: No redirect from HTTP" seems to be wrongly detected HOT 1
- Cannot add lancom.de HOT 1
- An error I cannot understand when submitting the domain travellings.cn HOT 1
- Add FAQ for hstspreload.org not detecting header when other sites do HOT 1
- Change the main branch to `main` HOT 3
- Error: Cannot connect using TLS HOT 5
- chromium-website-ci-builder | Builder HOT 1
- PendingRemoval function has no tests
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from hstspreload.org.