hillary
September 1, 2021, 8:14pm
3
Hey there, @hugmanrique
Thanks so much for reaching out and writing such a thorough post about what you are encountering and what you have tried.
Before I loop in a Support Engineer, I want to make sure you have read the following redirect Support Guide, as well as two other posts from Forums members on duplicated headers and the solution they found. Let us know if these resources help!
Last checked by Netlify Support Team: September 2023.
redirects and rewrites document covers a broad range of use cases, from status codes to proxying another service and everything in between.
My Netlify function is now returning doubled headers. AFAICT, nothing has changed on my end. Did some Netlify CDN setting change? This is breaking my redirects because the location field is repeated and browsers don’t understand it.
When using a custom domain, netlify will generate a certificate and add “strict-transport-security: max-age=31536000” header to http response by default, which is really great and secure. However, I was trying to add my website to HSTS Preload List (https://hstspreload.org ), and it requires “strict-transport-security: max-age=xxx; includeSubDomains; preload”. So I tried to set them based on the official document HTTPS (SSL) | Netlify Docs .
Here’s my netlify.toml:
[[headers]]
for = "/*"
[h…
