mirror of
https://github.com/ENSL/ensl_gathers.git
synced 2024-11-26 06:10:58 +00:00
Added Strict-Transport-Security header
This commit is contained in:
parent
dc485dc9b6
commit
f50cf282ab
1 changed files with 7 additions and 0 deletions
|
@ -17,6 +17,13 @@ module.exports = app => {
|
||||||
res.setHeader('X-GNU', 'Michael J Blanchard');
|
res.setHeader('X-GNU', 'Michael J Blanchard');
|
||||||
next();
|
next();
|
||||||
});
|
});
|
||||||
|
// Enforce HTTPS in production
|
||||||
|
if (env === 'production') {
|
||||||
|
app.use((req,res,next) => {
|
||||||
|
res.setHeader('Strict-Transport-Security', 'max-age=2592000; includeSubdomains'); // Enforce usage of HTTPS; max-age = 30 days
|
||||||
|
next();
|
||||||
|
});
|
||||||
|
}
|
||||||
app.use(express.static(path.join(__dirname, '../public')));
|
app.use(express.static(path.join(__dirname, '../public')));
|
||||||
app.use(cookieParser());
|
app.use(cookieParser());
|
||||||
app.use(favicon(path.join(__dirname, '../public/favicon.ico')));
|
app.use(favicon(path.join(__dirname, '../public/favicon.ico')));
|
||||||
|
|
Loading…
Reference in a new issue