diff options
author | Christoph (Sheogorath) Kern | 2018-11-21 01:29:04 +0100 |
---|---|---|
committer | GitHub | 2018-11-21 01:29:04 +0100 |
commit | 2244b11730958f2e748e16ff915d2552d66f5ff0 (patch) | |
tree | b4baf2984de37f893d99619da6b1351638aaf5a5 | |
parent | 2d241b93002a3a23f81ffe8fab82f2c6c98feca4 (diff) | |
parent | 0aa3116805f899fb3a97e4c7b22c05e91ac1016f (diff) |
Merge pull request #1064 from SISheogorath/fix/hstsSeconds
Fix wrong maxAgeSeconds multiplication
Diffstat (limited to '')
-rw-r--r-- | app.js | 2 | ||||
-rw-r--r-- | lib/config/default.js | 2 |
2 files changed, 2 insertions, 2 deletions
@@ -83,7 +83,7 @@ app.use(compression()) // use hsts to tell https users stick to this if (config.hsts.enable) { app.use(helmet.hsts({ - maxAge: config.hsts.maxAgeSeconds * 1000, + maxAge: config.hsts.maxAgeSeconds, includeSubdomains: config.hsts.includeSubdomains, preload: config.hsts.preload })) diff --git a/lib/config/default.js b/lib/config/default.js index d7a8f471..5a7ae0a0 100644 --- a/lib/config/default.js +++ b/lib/config/default.js @@ -13,7 +13,7 @@ module.exports = { useSSL: false, hsts: { enable: true, - maxAgeSeconds: 31536000, + maxAgeSeconds: 60 * 60 * 24 * 365, includeSubdomains: true, preload: true }, |