开始一直是 A,发现 HSTS 一直没成功,查阅后:
HTTP Strict Transport Security (HSTS) and NGINX
由于本站基于 Sonic,所以需要在这个块中也加入:add_header Strict-Transport-Security "max-age=31536000; preload" always;
#Sonic
location / {
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
proxy_redirect off;
proxy_pass http://127.0.0.1:8081;
add_header X-Cache $upstream_cache_status;
add_header Cache-Control no-cache;
add_header Strict-Transport-Security "max-age=31536000; preload" always;
}