diff options
author | mh <mh@immerda.ch> | 2010-12-06 17:40:46 +0100 |
---|---|---|
committer | mh <mh@immerda.ch> | 2010-12-06 17:40:46 +0100 |
commit | a87d7b91cc95c8ac7aee327e4cf4d3ce564cdea1 (patch) | |
tree | 7c97eba3a7610c8151ab9d8e048cad77f1dd7d06 /templates/vhosts/php_spip | |
parent | c8c3719c722c23dc5c4187eaf487947340a95478 (diff) |
add STS header for enforced SSL sites
* http://en.wikipedia.org/wiki/Strict_Transport_Security
This will tell browsers to interact with that site only per HTTPS.
Diffstat (limited to 'templates/vhosts/php_spip')
-rw-r--r-- | templates/vhosts/php_spip/php_spip.erb | 8 |
1 files changed, 8 insertions, 0 deletions
diff --git a/templates/vhosts/php_spip/php_spip.erb b/templates/vhosts/php_spip/php_spip.erb index da42d40..13c1199 100644 --- a/templates/vhosts/php_spip/php_spip.erb +++ b/templates/vhosts/php_spip/php_spip.erb @@ -140,6 +140,10 @@ </IfModule> <%- end -%> + <%- if ssl_mode.to_s == 'force' then -%> + Header add Strict-Transport-Security "max-age=15768000" + + <%- end -%> <Directory "<%= documentroot %>/"> AllowOverride <%= allow_override %> <%- if options.to_s != 'absent' or do_includes.to_s == 'true' then -%> @@ -333,6 +337,10 @@ AddDefaultCharset <%= default_charset %> <%- end -%> + <%- if ssl_mode.to_s == 'force' then -%> + Header add Strict-Transport-Security "max-age=15768000" + + <%- end -%> <%- if run_mode.to_s == 'static-itk' -%> <Directory "<%= documentroot %>/"> AllowOverride <%= allow_override %> |