Currently using:
expect-ct: max-age=604800, report-uri=“Report URI: Website security, made easy.”
enforce
OptionalSignals to the user agent that compliance with the Certificate Transparency policy should be enforced (rather than only reporting compliance) and that the user agent should refuse future connections that violate its Certificate Transparency policy.
When both the
enforce
directive and thereport-uri
directive are present, the configuration is referred to as an “enforce-and-report” configuration, signalling to the user agent both that compliance to the Certificate Transparency policy should be enforced and that violations should be reported.
Considering to add enforce
.
expect-ct: max-age=604800, enforce, report-uri=“Report URI: Website security, made easy.”