github/reverse-proxy-confs
1
0
Fork 0
mirror of https://github.com/linuxserver/reverse-proxy-confs.git synced 2025-08-21 22:03:39 -07:00
Code Issues Projects Releases Packages Wiki Activity Actions 2

Enable HTTP Strict Transport Security.

Browse source 
This is added for security purposes and in order to suppress the "The "Strict-Transport-Security" HTTP header is not set to at least "15552000" seconds." warning in Nextcloud's security scan.
This commit is contained in:
Christian Anguiano 2019-04-23 13:57:03 -07:00 committed by GitHub
commit a36b855715
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
1 changed files with 3 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

4
nextcloud.subdomain.conf.sample
View file

@ -21,7 +21,9 @@ server {
include /config/nginx/ssl.conf; include /config/nginx/ssl.conf;
client_max_body_size 0; client_max_body_size 0;
add_header Strict-Transport-Security "max-age=15552000; includeSubDomains";
location / { location / {
include /config/nginx/proxy.conf; include /config/nginx/proxy.conf;
resolver 127.0.0.11 valid=30s; resolver 127.0.0.11 valid=30s;