In your nginx.conf file add:
add-header Strict-Transport-Security "max-age=31536000; includeSubDomains; preload";