Stop setting Strict-Transport-Securty header from within the app

author: Paweł Chojnacki <pawel@chojnacki.ws> 2017-03-03 11:05:24 +0000
committer: Marin Jankovski <marin@gitlab.com> 2017-03-03 11:05:24 +0000
commit: 76e96878aad0a281f8c32ef98a276b499e2581ad (patch)
tree: acdfab35d10a5e5fe39c438dc664f3eb847ea0f5 /lib/support
parent: a9a581567c6d56186feade11ad867a66ab872ca6 (diff)
download: gitlab-ce-76e96878aad0a281f8c32ef98a276b499e2581ad.tar.gz
1 files changed, 3 insertions, 0 deletions
diff --git a/lib/support/nginx/gitlab-ssl b/lib/support/nginx/gitlab-ssl
index 5661394058d..330031aaddc 100644
--- a/lib/support/nginx/gitlab-ssl
+++ b/lib/support/nginx/gitlab-ssl
@@ -82,6 +82,9 @@ server {
   ##
   # ssl_dhparam /etc/ssl/certs/dhparam.pem;
 
+  ## [Optional] Enable HTTP Strict Transport Security
+  # add_header Strict-Transport-Security "max-age=31536000; includeSubDomains";
+
   ## Individual nginx logs for this GitLab vhost
   access_log  /var/log/nginx/gitlab_access.log;
   error_log   /var/log/nginx/gitlab_error.log;
author	Paweł Chojnacki <pawel@chojnacki.ws>	2017-03-03 11:05:24 +0000
committer	Marin Jankovski <marin@gitlab.com>	2017-03-03 11:05:24 +0000
commit	76e96878aad0a281f8c32ef98a276b499e2581ad (patch)
tree	acdfab35d10a5e5fe39c438dc664f3eb847ea0f5 /lib/support
parent	a9a581567c6d56186feade11ad867a66ab872ca6 (diff)
download	gitlab-ce-76e96878aad0a281f8c32ef98a276b499e2581ad.tar.gz