cst1/openstreetmap-website
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Allow apache to control the HSTS setting

Browse source
This commit is contained in:
Tom Hughes 2018-01-11 19:19:36 +00:00
parent 3128aabbfd
commit b396c8cbe5
1 changed files with 0 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

1
config/initializers/secure_headers.rb
View file

@ -27,7 +27,6 @@ cookie_policy = {
}
SecureHeaders::Configuration.default do |config|
config.hsts = "max-age=0"
config.csp = SecureHeaders::OPT_OUT
config.csp_report_only = csp_policy
config.cookies = cookie_policy