Mercurial > repos > other > Puppet

comparison modules/website/templates/https_core_conf.erb @ 373:c68883dde00b

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
Increase HSTS header duration Apparently 6 months isn't long enough and we need at least 12
author IBBoard <dev@ibboard.co.uk>
date Tue, 15 Jun 2021 19:30:24 +0100
parents 94f34831132d
children
comparison
equal deleted inserted replaced
372:94f34831132d 373:c68883dde00b
1 Header always set Strict-Transport-Security "max-age=16070400; includeSubDomains" 1 Header always set Strict-Transport-Security "max-age=31536000; includeSubDomains"
2 <%- if @csp -%> 2 <%- if @csp -%>
3 Header always set Content-Security-Policy "upgrade-insecure-requests; <%= @csp_string %>" 3 Header always set Content-Security-Policy "upgrade-insecure-requests; <%= @csp_string %>"
4 <%- end -%> 4 <%- end -%>
5 <%- if @csp_report -%> 5 <%- if @csp_report -%>
6 Header always set Content-Security-Policy-Report-Only "<%= @csp_report_string %>" 6 Header always set Content-Security-Policy-Report-Only "<%= @csp_report_string %>"