fix: HSTS header max-age value (#3225)

e87d5119 · pylr · GitHub · 5ffa1893 · e87d5119
Unverified Commit e87d5119 authored Mar 19, 2021 by pylr Committed by GitHub Mar 18, 2021
Hide whitespace changes
Inline Side-by-side

Showing with 1 addition and 1 deletion

security.js server/middlewares/security.js +1 -1

No files found.
--- a/server/middlewares/security.js
+++ b/server/middlewares/security.js
@@ -33,7 +33,7 @@ module.exports = function (req, res, next) {

  // -> Enforce HSTS
  if (WIKI.config.security.securityHSTS) {
-    res.set('Strict-Transport-Security', `max-age=${WIKI.config.securityHSTSDuration}; includeSubDomains`)
+    res.set('Strict-Transport-Security', `max-age=${WIKI.config.security.securityHSTSDuration}; includeSubDomains`)
  }

  // -> Prevent Open Redirect from user provided URL