Skip to content
Snippets Groups Projects
Commit ac60002b authored by Paweł Chojnacki's avatar Paweł Chojnacki Committed by GitLab
Browse files

Add more information about HSTS

parent 56ef2187
No related branches found
No related tags found
1 merge request!61Add HSTS setting to nginx configuration for gitlab
Hide whitespace changes
Inline Side-by-side
web-server/nginx/gitlab-omnibus-ssl-nginx.conf
+ 2
0
View file @ ac60002b
@@ -63,6 +63,8 @@ server {
## See app/controllers/application_controller.rb for headers set
 
## [Optional] Enable HTTP Strict Transport Security
## HSTS is a feature improving protection against MITM attacks
## For more information see: https://www.nginx.com/blog/http-strict-transport-security-hsts-and-nginx/
# add_header Strict-Transport-Security "max-age=31536000; includeSubDomains";
 
## [Optional] If your certficate has OCSP, enable OCSP stapling to reduce the overhead and latency of running SSL.
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment