Multiple HSTS headers in response
When testing my SSL implementation using SSL Labs' SSL Server Test I get this warning when testing the subdomain I use for GitLab itself:
Multiple HSTS headers in response
When testing the subdomain I'm using for Mattermost everything is perfect.
I added this string to /etc/gitlab/gitlab.rb
only in the GitLab section, not in the Mattermost section:
nginx['custom_nginx_config'] = "include /etc/gitlab/nginx/conf.d/*.conf;"
The file located there, which seems to load fine when executing the cookbooks, contains this string:
add_header Strict-Transport-Security max-age=15768000;
It works fine for Mattermost but produces the problem mentioned above for GitLab. Still, it makes me wonder why I can't find this string in any of the files located in /var/opt/gitlab/nginx/conf
.
Any thoughts?