Many thanks for looking at this. I will first up try and convince the client that the risk is low for this site and see how I go.


Quote Originally Posted by Vincent Oorsprong View Post

I looked up HSTS ( and I doubt this should not be used with webservices. OTOH in v20 we rewrote WebServiceDispatcher from the 'old' webservice handler to the cHTTPHandler class and there it could be an option.