From d84891f2eccc574372f04d3203c71d16e84b960c Mon Sep 17 00:00:00 2001
From: Chris Croome <chris@webarchitects.co.uk>
Date: Thu, 20 Jun 2019 07:03:25 +0100
Subject: [PATCH] .htaccess updated for #57

---
 .htaccess | 16 ++++++++++++++++
 1 file changed, 16 insertions(+)

diff --git a/.htaccess b/.htaccess
index dcc0ed8..9e5a13b 100644
--- a/.htaccess
+++ b/.htaccess
@@ -12,3 +12,19 @@ AddOutputFilter DEFLATE html
 AddOutputFilter DEFLATE svg
 AddOutputFilter DEFLATE css
 AddOutputFilter DEFLATE js
+# Canonical URLs redirect to the domain with a www
+<IfModule mod_rewrite.c>
+  RewriteCond %{HTTP_HOST} ^coops\.tech$
+  RewriteRule ^/?(.*) https://www.coops.tech/$1 [R,L] 
+<IfModule>
+# Redirect HTTP to HTTPS
+# https://wiki.apache.org/httpd/RewriteHTTPToHTTPS
+<IfModule mod_rewrite.c>
+  RewriteEngine on
+  RewriteCond %{HTTPS} !=on
+  RewriteRule ^/?(.*) https://%{SERVER_NAME}/$1 [R,L]
+</IfModule>
+# Strict Transport Security Header, this prevents clients 
+# with STS support from accessing the site using HTTP
+# https://stackoverflow.com/questions/24144552/how-to-set-hsts-header-from-htaccess-only-on-https
+Header set Strict-Transport-Security "max-age=31536000" env=HTTPS