Skip to content

Commit

Permalink
add HSTS header
Browse files Browse the repository at this point in the history
  • Loading branch information
@abraham
abraham committed Jan 19, 2015
1 parent eee2ed6 commit 864082d
Showing 1 changed file with 3 additions and 0 deletions.
3 changes: 3 additions & 0 deletions http.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -5,6 +5,9 @@
$expectedHost = getenv('HOST');

if (!DEBUG) {
if (FORCE_TLS) {
header("Strict-Transport-Security: max-age=31415926; includeSubDomains; preload");
}
if (
FORCE_TLS &&
isset($_SERVER['HTTP_X_FORWARDED_PROTO']) &&
Expand Down

0 comments on commit 864082d

Please sign in to comment.