Ask Your Question
2

What is the reason behind the browser blocking custom redirect domain with HSTS in AWS SES?

asked 2023-03-27 11:00:00 +0000

scrum gravatar image

edit retag flag offensive close merge delete
add a comment

1 Answer

Sort by ยป oldest newest most voted
0

answered 2021-10-14 23:00:00 +0000

devzero gravatar image

The reason behind the browser blocking custom redirect domain with HSTS in AWS SES is because the HSTS (HTTP Strict Transport Security) policy mandates that once a user's browser has seen the HSTS header, it will only connect to that specific domain over HTTPS for a specified amount of time (usually a few months). This means that any attempts to redirect users to an HTTP version of the domain or a different domain will be blocked by the browser, as it goes against the HSTS policy. Therefore, to avoid this issue, it is recommended to use the default Amazon SES redirect domain, which is already configured with HSTS.

edit flag offensive delete link more
add a comment

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account. This space is reserved only for answers. If you would like to engage in a discussion, please instead post a comment under the question or an answer that you would like to discuss

Add Answer


Question Tools

subscribe to rss feed

Stats

Asked: 2023-03-27 11:00:00 +0000

Seen: 20 times

Last updated: Oct 14 '21

Related questions

How can a domain be redirected for all of its URLs while also allowing hotlinking exclusively for approved websites?

What does the error "Invalid Required Domain" indicate for PayPal's Payflow Link and Payflow Pro?

What is the process to identify the IAM user who has recently registered a new domain on AWS?

Why are cookies not staying across different windows of the browser?

What is the process for redirecting the old domain to the new one using Firebase Hosting?

What does the custom domain feature of Gatsby-Cloud entail?

What does the error message "WSO2 API Manager 4.1.0 reports Basic Authentication failure due to a domain mismatch for user:user@domain.com" mean?

How can Active Directory be set up to enable LDAPmodify?

Is it possible to have distinct front-end and back-end applications within the same domain?

How can a scatter plot be created using ggplot2 to display log-transformed values in the real estate domain, while also including x and y axis labels?

Copyright QStack.ai, 2010-2023. Content on this site is licensed under the Creative Commons Attribution Share Alike 3.0 license.
about | faq | help | privacy policy | terms of service | contact