mirror of https://git.kore.io/kore.git
Do not send the HSTS header if tls is not enabled in the server context.
This commit is contained in:
parent
cc276e2471
commit
b6570e10a9
|
@ -2138,7 +2138,7 @@ http_response_normal(struct http_request *req, struct connection *c,
|
|||
}
|
||||
}
|
||||
|
||||
if (http_hsts_enable) {
|
||||
if (c->ssl && http_hsts_enable) {
|
||||
kore_buf_appendf(header_buf, "strict-transport-security: ");
|
||||
kore_buf_appendf(header_buf,
|
||||
"max-age=%" PRIu64 "; includeSubDomains\r\n",
|
||||
|
|
Loading…
Reference in New Issue