Skip to content
This repository has been archived by the owner on Aug 30, 2021. It is now read-only.

Commit

Permalink
fix(hsts): removing hsts configuration set on lusca's csrf settings b…
Browse files Browse the repository at this point in the history
…ut is already configured and provided using helmet
  • Loading branch information
lirantal committed Apr 13, 2016
1 parent 8da3725 commit c9169e4
Showing 1 changed file with 0 additions and 5 deletions.
5 changes: 0 additions & 5 deletions config/env/default.js
Original file line number Diff line number Diff line change
Expand Up @@ -34,11 +34,6 @@ module.exports = {
csp: { /* Content Security Policy object */},
xframe: 'SAMEORIGIN',
p3p: 'ABCDEF',
hsts: {
maxAge: 31536000, // Forces HTTPS for one year
includeSubDomains: true,
preload: true
},
xssProtection: true
},
logo: 'modules/core/client/img/brand/logo.png',
Expand Down

0 comments on commit c9169e4

Please sign in to comment.