diff options
| author | Ivan Ristic <ivanr@webkreator.com> | 2015-09-15 11:47:10 +0100 |
|---|---|---|
| committer | Ivan Ristic <ivanr@webkreator.com> | 2015-09-15 11:47:10 +0100 |
| commit | 371bfcbfa07ad74094d1f5e992c8e240a5149453 (patch) | |
| tree | 048acd4839fb54cdd7c5172ec0d7e2be65d5e03d /ssllabs-api-docs.md | |
| parent | dd81570b38d0454000ac145b4143546be63018dc (diff) | |
| download | ssllabs-scan-371bfcbfa07ad74094d1f5e992c8e240a5149453.zip ssllabs-scan-371bfcbfa07ad74094d1f5e992c8e240a5149453.tar.gz ssllabs-scan-371bfcbfa07ad74094d1f5e992c8e240a5149453.tar.bz2 | |
New EndpointDetails fields: stsStatus and stsPreload.
Diffstat (limited to 'ssllabs-api-docs.md')
| -rw-r--r-- | ssllabs-api-docs.md | 13 |
1 files changed, 8 insertions, 5 deletions
diff --git a/ssllabs-api-docs.md b/ssllabs-api-docs.md index b5ae0ec..879a9f0 100644 --- a/ssllabs-api-docs.md +++ b/ssllabs-api-docs.md @@ -1,6 +1,6 @@ -# SSL Labs API Documentation v1.20.15 # +# SSL Labs API Documentation v1.20.17 # -**Last update:** 14 September 2015<br> +**Last update:** 15 September 2015<br> **Author:** Ivan Ristic <iristic@qualys.com> This document explains the SSL Labs Assessment APIs, which can be used to test SSL servers available on the public Internet. @@ -194,9 +194,11 @@ The remainder of the document explains the structure of the returned objects. Th * bit 1 (2) - set if secure renegotiation is supported * bit 2 (4) - set if secure client-initiated renegotiation is supported * bit 3 (8) - set if the server requires secure renegotiation support +* **stsStatus** - status of the HSTS header. The possible values are: unknown, present, absent, and error (e.g., header parsing failure) * **stsResponseHeader** - the contents of the Strict-Transport-Security (STS) response header, if seen -* **stsMaxAge** - the maxAge parameter extracted from the STS parameters; null if STS not seen, or -1 if the specified value is invalid (e.g., not a zero or a positive integer; the maximum value currently supported is 2,147,483,647) -* **stsSubdomains** - true if the includeSubDomains STS parameter is set; null if STS not seen +* **stsMaxAge** - the maxAge parameter extracted from the STS parameters; null if STS not seen or on header parsing error; the maximum value currently supported is 9223372036854775807 +* **stsSubdomains** - true if the includeSubDomains STS parameter is set; null if STS not seen or on header parsing error +* **stsPreload** - true if the preload directive is used; null if STS not seen or on header parsing error * **pkpResponseHeader** - the contents of the Public-Key-Pinning response header, if seen * **sessionResumption** - this is an integer value that describes endpoint support for session resumption. The possible values are: * 0 - session resumption is not enabled and we're seeing empty session IDs @@ -435,4 +437,5 @@ The remainder of the document explains the structure of the returned objects. Th ### 1.20.x (In development) ### -* New EndpointDetails fields: rc4Only, chaCha20Preference. +* New EndpointDetails fields: rc4Only, chaCha20Preference, stsStatus, stsPreload. +* The maximum value supported by the stsMaxAge field has been increased to 9223372036854775807. |