Enable HSTS on Digital Ocean

Add the following to the .htaccess file:

Header always set Strict-Transport-Security “max-age=31536000” env=HTTPS

To test if it is implemented:

curl -s -D- https://websitedomain.com/ | grep -i Strict

If nothing is returned then it is not enabled.

If it is enabled it will return something like: strict-transport-security: max-age=31536000