Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with
or
.
Download ZIP
Browse files

Merge pull request #79 from django/hsts

Increased SECURE_HSTS_SECONDS to a year and enabled it for subdomains.
  • Loading branch information...
commit a7b56eb5872b68899a4a7e95b0bf6a22bbf4ae48 2 parents a0ff900 + 5a6674c
@jezdez jezdez authored
Showing with 4 additions and 3 deletions.
  1. +4 −3 django_www/common_settings.py
View
7 django_www/common_settings.py
@@ -138,11 +138,12 @@
USE_TZ = False
-
-### django-secure settings
+# django-secure settings
SECURE_BROWSER_XSS_FILTER = True
SECURE_CONTENT_TYPE_NOSNIFF = True
-SECURE_HSTS_SECONDS = 600
+SECURE_HSTS_SECONDS = 31536000 # 1 year
+
+SECURE_HSTS_INCLUDE_SUBDOMAINS = True
Please sign in to comment.
Something went wrong with that request. Please try again.