Enable HTTP Strict Transport Security (HSTS) in Azure WebRoles

Question

How can I turn on HTTP Strict Transport Security (HSTS) for Azure WebRoles?

Answer 1

There is an IIS module which enables HSTS compliant with the HSTS Draft Specification (RFC 6797); you can found it here https://hstsiis.codeplex.com/

DON'T TRY THIS:

because this will include the STS header in HTTP responses over non-secure transport.