Support HSTS

HSTS is becoming standard requirement for many IT Security departments.    The inability to enable HSTS on a Webflow site makes it tough to use Webflow.


  • Space Angels
  • Jan 8 2020
  • Reviewed
  • Lindsey Carlson commented
    8 Sep 04:34pm

    Just received a note from Webflow support today:

    "yes, unfortunately custom security headers are currently only offered with an Enterprise plan. At this time there is no timeline for allowing self-serve, non-enterprise accounts to have access to this feature."
  • Graham Smith commented
    24 Aug 05:25pm

    This is pretty important, I'm lucky that no clients have asked about it so far but it's only a matter of time. I'd prefer not to leave Webflow but I'll have to if they don't fix this glaring security problem

  • Edouard Steegmann commented
    9 Aug 04:56pm

    That would be great in 2021 to say the least

  • Lucas Howard commented
    30 Jul 05:19pm

    For modern-day internet, HSTS is a must have. Shocked that Webflow does not already support this

  • Mike Pollock commented
    29 Jul 07:03pm

    It would really be great to have this HSTS option. Please accomdate this soon!

  • Repro India commented
    13 Jul 10:29am

    we have also received this issue from our auditor.please let us know when this issue will get resolved.

    Deepak Vasaikar

    Mobile - 09223380200

  • Goran Milic commented
    5 Jul 01:36pm

    This is big problem for my clients. Any news about this feature/requirement?

  • Jenica Blechschmidt commented
    19 May 10:58pm


  • Chris Williams commented
    12 May 05:54pm

    This is needed, my IT department wants me to move our websites because Webflow cannot do this.

  • Jennifer commented
    12 May 02:37am

    Need this basic and must to have security headers as early as possible

  • Cyndie Shaffstall commented
    10 May 12:47pm

    What is the status of this—let's not call it a feature since it is most definitiely a requirement?

  • Dzcard commented
    4 May 08:28am

    SEO must have. Security feature compulsory to continue with Webflow. Our biggest problem with Webflow right now!

  • Alan Linush commented
    29 Apr 09:23pm

    Mega up vote, need this for my clients. Could be a deal breaker

  • Vers Creative commented
    26 Apr 07:05pm

    Wordpress and even SquareSpace EASILY allow HSTS. On SquareSpace, you just click a button to engage and it's done.

    This request has been on WebFlow's radar for ... looks like a year or longer.

  • Nick Tyler commented
    21 Apr 10:06am

    Come on guys - this is a basic nowadays.

  • Michael Monerau commented
    6 Apr 02:14pm

    Totally necessary. This is now considered in all basic automatic security checks. Can't live without it.

  • Fathi Sehla commented
    24 Mar 02:55pm


  • Matthew Paczkowski commented
    14 Mar 04:13pm

    @webflow team - is this being progressed ?

  • Brian Vallelunga commented
    15 Feb 02:52am

    Please add this feature! We need it as well!

  • Jeremiah Smith commented
    7 Feb 04:29am

    This is a requirement for good SEO as well, and we're putting our SEO clients on Webflow more and more. Please add this feature!

  • Load older comments
  • +157