diff options
| author | Haakon Meland Eriksen <haakon.eriksen@far.no> | 2016-02-05 06:28:52 +0100 |
|---|---|---|
| committer | Haakon Meland Eriksen <haakon.eriksen@far.no> | 2016-02-05 06:28:52 +0100 |
| commit | 2afdba48f06bb99922c19bf964d8f601c1545166 (patch) | |
| tree | bbd1418a44cee6306a568bb64f4caa2d93eeb289 /boot.php | |
| parent | 8f810a3dcfd60c00b14d3da811e1c0cf005e8ced (diff) | |
| parent | 425089524373137e11d3691e7efdce0fb89281c8 (diff) | |
| download | volse-hubzilla-2afdba48f06bb99922c19bf964d8f601c1545166.tar.gz volse-hubzilla-2afdba48f06bb99922c19bf964d8f601c1545166.tar.bz2 volse-hubzilla-2afdba48f06bb99922c19bf964d8f601c1545166.zip | |
Merge remote-tracking branch 'upstream/master'
Diffstat (limited to 'boot.php')
| -rwxr-xr-x | boot.php | 2 |
1 files changed, 1 insertions, 1 deletions
@@ -2164,7 +2164,7 @@ function construct_page(&$a) { // security headers - see https://securityheaders.io - if($a->get_scheme() === 'https') + if($a->get_scheme() === 'https' && $a->config['system']['transport_security_header']) header("Strict-Transport-Security: max-age=31536000"); header("Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline'"); |