aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorJesús <heckyel@hyperbola.info>2021-10-25 12:19:32 -0500
committerJesús <heckyel@hyperbola.info>2021-10-25 12:19:32 -0500
commitd28adfa17362cbb58b165317b2693c1433358b92 (patch)
treeb8a4383c807558122eafde7897fbde299747352f
parent37475fd3b891b814bd6765ae17a6b82ee7ae5c70 (diff)
downloadgitolite-cgit-docker-d28adfa17362cbb58b165317b2693c1433358b92.tar.lz
gitolite-cgit-docker-d28adfa17362cbb58b165317b2693c1433358b92.tar.xz
gitolite-cgit-docker-d28adfa17362cbb58b165317b2693c1433358b92.zip
nginx: remove Strict-Transport-Security
Strict-Transport-Security is only HTTPS
-rwxr-xr-xgitolite-cgit/entrypoint.sh2
1 files changed, 0 insertions, 2 deletions
diff --git a/gitolite-cgit/entrypoint.sh b/gitolite-cgit/entrypoint.sh
index 66d37cc..e82154c 100755
--- a/gitolite-cgit/entrypoint.sh
+++ b/gitolite-cgit/entrypoint.sh
@@ -329,8 +329,6 @@ EOF
error_log off;
# Aditional Security Headers
- # ref: https://developer.mozilla.org/en-US/docs/Security/HTTP_Strict_Transport_Security
- add_header Strict-Transport-Security "max-age=31536000; includeSubDomains";
# ref: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
add_header X-Frame-Options DENY always;