fix: HSTS header max-age value (#3225)

2021-03-19 02:53:55 +01:00 · 2021-03-19 02:53:55 +01:00 · e87d511978
commit e87d511978
parent 5ffa189383
1 changed files with 1 additions and 1 deletions
--- a/server/middlewares/security.js
+++ b/server/middlewares/security.js
@ -33,7 +33,7 @@ module.exports = function (req, res, next) {

  // -> Enforce HSTS
  if (WIKI.config.security.securityHSTS) {
-    res.set('Strict-Transport-Security', `max-age=${WIKI.config.securityHSTSDuration}; includeSubDomains`)
+    res.set('Strict-Transport-Security', `max-age=${WIKI.config.security.securityHSTSDuration}; includeSubDomains`)
  }

  // -> Prevent Open Redirect from user provided URL