iv-org
/
invidious
mirror of https://gitea.invidious.io/iv-org/invidious
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Bump max-age for HSTS

This commit is contained in:
Omar Roth 2019-04-30 20:53:56 -05:00
parent 90edf2fc60
commit 734905d1f7
No known key found for this signature in database
GPG Key ID: B8254FB7EC3D37F2
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
src/invidious.cr
View File

@ -188,7 +188,7 @@ before_all do |env|
env.response.headers["Referrer-Policy"] = "same-origin" env.response.headers["Referrer-Policy"] = "same-origin"
if Kemal.config.ssl || config.https_only if Kemal.config.ssl || config.https_only
env.response.headers["Strict-Transport-Security"] = "max-age=604800; includeSubDomains" env.response.headers["Strict-Transport-Security"] = "max-age=31536000; includeSubDomains; preload"
end end
begin begin
@ -5189,7 +5189,7 @@ if Kemal.config.ssl
redirect_url += "?#{env.request.query}" redirect_url += "?#{env.request.query}"
end end
env.response.headers["Strict-Transport-Security"] = "max-age=604800; includeSubDomains" env.response.headers["Strict-Transport-Security"] = "max-age=31536000; includeSubDomains; preload"
env.response.headers["Location"] = redirect_url env.response.headers["Location"] = redirect_url
env.response.status_code = 301 env.response.status_code = 301
end end