]> WPIA git - gigi.git/blobdiff - src/org/cacert/gigi/Gigi.java
projects / gigi.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
Adding STS.
[gigi.git] / src / org / cacert / gigi / Gigi.java
diff --git a/src/org/cacert/gigi/Gigi.java b/src/org/cacert/gigi/Gigi.java
index 96afcb9d073cde511a7aefa7c6e4e51e0fc3fdcc..78c3373e16a9c12d0f43abdf5ac5f0ba827c83eb 100644 (file)
--- a/src/org/cacert/gigi/Gigi.java
+++ b/src/org/cacert/gigi/Gigi.java
@@ -152,6 +152,7 @@ public class Gigi extends HttpServlet {
                hsr.addHeader("Access-Control-Max-Age", "60");
 
                hsr.addHeader("Content-Security-Policy", getDefaultCSP());
+               hsr.addHeader("Strict-Transport-Security", "max-age=31536000");
 
        }
        private static String defaultCSP = null;
WPIA Certificate Web Issuance Platform