summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorChristoph (Sheogorath) Kern2018-11-21 01:29:04 +0100
committerGitHub2018-11-21 01:29:04 +0100
commit2244b11730958f2e748e16ff915d2552d66f5ff0 (patch)
treeb4baf2984de37f893d99619da6b1351638aaf5a5
parent2d241b93002a3a23f81ffe8fab82f2c6c98feca4 (diff)
parent0aa3116805f899fb3a97e4c7b22c05e91ac1016f (diff)
Merge pull request #1064 from SISheogorath/fix/hstsSeconds
Fix wrong maxAgeSeconds multiplication
Diffstat (limited to '')
-rw-r--r--app.js2
-rw-r--r--lib/config/default.js2
2 files changed, 2 insertions, 2 deletions
diff --git a/app.js b/app.js
index 618fba15..db930141 100644
--- a/app.js
+++ b/app.js
@@ -83,7 +83,7 @@ app.use(compression())
// use hsts to tell https users stick to this
if (config.hsts.enable) {
app.use(helmet.hsts({
- maxAge: config.hsts.maxAgeSeconds * 1000,
+ maxAge: config.hsts.maxAgeSeconds,
includeSubdomains: config.hsts.includeSubdomains,
preload: config.hsts.preload
}))
diff --git a/lib/config/default.js b/lib/config/default.js
index d7a8f471..5a7ae0a0 100644
--- a/lib/config/default.js
+++ b/lib/config/default.js
@@ -13,7 +13,7 @@ module.exports = {
useSSL: false,
hsts: {
enable: true,
- maxAgeSeconds: 31536000,
+ maxAgeSeconds: 60 * 60 * 24 * 365,
includeSubdomains: true,
preload: true
},