Kinetics 62 enable strict transport security header for all the service endpoints

[atultherajput]

🔩 Description: What code changed, and why?

Added HSTS response headers in some services listed by customer. These services are:

• 2000 automate-gateway

• 10115 session-service

• 10161 automate-ui (nginx: master)

• 10117 dex (related PR: Added HSTS response header. dex-1#45)

• 10143 backup-gateway (minio)

Note: Fix for MinIO service is dependent on upcoming refresh of core/minio package which is planned for the current quarter (Refer to PR: chef-base-plans/minio#5 and minio/minio#12256).

Also removed HSTS from load balancer for above services due to duplicate HSTS headers.

⛓️ Related Resources

Related issue: #5698
Customer bug: https://github.com/chef/customer-bugs/issues/471

👍 Definition of Done

All above 4 services running on ports (10115, 2000, 10161, 10117) should have HSTS ie. Strict-Transport-Security response header.

👟 How to Build and Test the Change

Rebuild the required components ie. session-service, automate-gateway, automate-ui and automate-load-balancer.
Testing can be done via UI or doing curl request inside hab studio. Ex:

• curl -X GET -i https://localhost:10115/health --insecure
• curl -X GET -i https://localhost:2000/api/v0/gateway/health --insecure
• curl -X GET -i https://localhost:10161/ --insecure
• curl -X GET -i https://localhost:10117/dex/healthz --insecure

✅ Checklist

All PRs must tick these:

• I have read the CONTRIBUTING document.
• All commits signed-off for the Developer Certification of Origin.

With occasional exceptions, all PRs from Progress employees must tick these:

• Is the code clear? (complicated code or lots of comments--subdivide and use well-named methods, meaningful variable names, etc.)
• Consistency checked? (user notifications, user prompts, visual patterns, code patterns, variable names)
• Repeated code blocks eliminated? (adapt and reuse existing components, blocks, functions, etc.)
• Spelling, grammar, typos checked? (at a minimum use make spell in any component directory)
• Code well-formatted? (indents, line breaks, etc. improve rather than hinder readability)

All PRs from Progress employees should tick these if appropriate:

• Tests added/updated? (all new code needs new tests)
• Docs added/updated? (all customer-facing changes)

Please add a note next to any checkbox above if you are NOT ticking it.

📷 Screenshots, if applicable

[netlify]

👷 Deploy Preview for chef-automate processing.

Name	Link
🔨 Latest commit	64e2642
🔍 Latest deploy log	https://app.netlify.com/sites/chef-automate/deploys/624d269783668a0008006934

[kalroy]

Update the bldr.toml to include the library you have added.

[atultherajput]

Update the bldr.toml to include the library you have added.

Sure. I will add that and update the PR.

[sonarcloud]

Kudos, SonarCloud Quality Gate passed!   

0 Bugs
0 Vulnerabilities
0 Security Hotspots
0 Code Smells

3.3% Coverage
0.0% Duplication

[Dmaddu]

looks good to me