Only use strict transport security for the discourse domain

author Daniel Porter <dpreid@gmail.com>

Mon, 8 Dec 2014 14:09:42 +0000 (14:09 +0000)

committer Daniel Porter <dpreid@gmail.com>

Mon, 8 Dec 2014 14:09:42 +0000 (14:09 +0000)
author Daniel Porter <dpreid@gmail.com>
Mon, 8 Dec 2014 14:09:42 +0000 (14:09 +0000)
committer Daniel Porter <dpreid@gmail.com>
Mon, 8 Dec 2014 14:09:42 +0000 (14:09 +0000)
diff --git a/templates/web.ssl.template.yml b/templates/web.ssl.template.yml

index f39a6138db08be28846ca41a11ac78be4ea54cc1..51a3dc83deab24d04daab10813f1a6239dd02512 100644 (file)
--- a/templates/web.ssl.template.yml
+++ b/templates/web.ssl.template.yml
@@ -27,8 +27,8 @@ run:
         # enable SPDY header compression
         spdy_headers_comp 6;
  
-       # remember the certificate for a year and automatically connect to HTTPS
-       add_header Strict-Transport-Security 'max-age=31536000; includeSubDomains';
+       # remember the certificate for a year and automatically connect to HTTPS for this domain
+       add_header Strict-Transport-Security 'max-age=31536000';
  
         gzip on;
author	Daniel Porter <dpreid@gmail.com>
	Mon, 8 Dec 2014 14:09:42 +0000 (14:09 +0000)
committer	Daniel Porter <dpreid@gmail.com>
	Mon, 8 Dec 2014 14:09:42 +0000 (14:09 +0000)