Merge pull request #1064 from SISheogorath/fix/hstsSeconds

Fix wrong maxAgeSeconds multiplication
author: Christoph (Sheogorath) Kern 2018-11-21 01:29:04 +0100
committer: GitHub 2018-11-21 01:29:04 +0100
commit: 2244b11730958f2e748e16ff915d2552d66f5ff0 (patch)
tree: b4baf2984de37f893d99619da6b1351638aaf5a5
parent: 2d241b93002a3a23f81ffe8fab82f2c6c98feca4 (diff)
parent: 0aa3116805f899fb3a97e4c7b22c05e91ac1016f (diff)
2 files changed, 2 insertions, 2 deletions
diff --git a/app.js b/app.js
index 618fba15..db930141 100644
--- a/app.js
+++ b/app.js
@@ -83,7 +83,7 @@ app.use(compression())
 // use hsts to tell https users stick to this
 if (config.hsts.enable) {
   app.use(helmet.hsts({
-    maxAge: config.hsts.maxAgeSeconds * 1000,
+    maxAge: config.hsts.maxAgeSeconds,
     includeSubdomains: config.hsts.includeSubdomains,
     preload: config.hsts.preload
   }))
diff --git a/lib/config/default.js b/lib/config/default.js
index d7a8f471..5a7ae0a0 100644
--- a/lib/config/default.js
+++ b/lib/config/default.js
@@ -13,7 +13,7 @@ module.exports = {
   useSSL: false,
   hsts: {
     enable: true,
-    maxAgeSeconds: 31536000,
+    maxAgeSeconds: 60 * 60 * 24 * 365,
     includeSubdomains: true,
     preload: true
   },
author	Christoph (Sheogorath) Kern	2018-11-21 01:29:04 +0100
committer	GitHub	2018-11-21 01:29:04 +0100
commit	2244b11730958f2e748e16ff915d2552d66f5ff0 (patch)
tree	b4baf2984de37f893d99619da6b1351638aaf5a5
parent	2d241b93002a3a23f81ffe8fab82f2c6c98feca4 (diff)
parent	0aa3116805f899fb3a97e4c7b22c05e91ac1016f (diff)