nextcloud/all-in-one
1
1
Fork 0
mirror of https://github.com/nextcloud/all-in-one.git synced 2025-02-22 21:06:45 +08:00
Code Issues Projects Releases Packages Wiki Activity

remove HSTS

Browse source 
Signed-off-by: szaimen <szaimen@e.mail.de>
This commit is contained in:
szaimen 2022-06-08 00:40:57 +02:00
parent 8a43baf837
commit e5fa3e683b
1 changed files with 0 additions and 6 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

6
reverse-proxy.md
View file

@ -54,7 +54,6 @@ Add this as a new Apache site config:
# SSL # SSL
SSLEngine on SSLEngine on
Header always set Strict-Transport-Security "max-age=15768000; includeSubDomains; preload"
Include /etc/letsencrypt/options-ssl-apache.conf Include /etc/letsencrypt/options-ssl-apache.conf
SSLCertificateFile /etc/letsencrypt/live/<your-nc-domain>/fullchain.pem SSLCertificateFile /etc/letsencrypt/live/<your-nc-domain>/fullchain.pem
SSLCertificateKeyFile /etc/letsencrypt/live/<your-nc-domain>/privkey.pem SSLCertificateKeyFile /etc/letsencrypt/live/<your-nc-domain>/privkey.pem
@ -84,7 +83,6 @@ Add this to your Caddyfile:
``` ```
https://<your-nc-domain>:443 { https://<your-nc-domain>:443 {
header Strict-Transport-Security max-age=31536000;
reverse_proxy localhost:11000 reverse_proxy localhost:11000
} }
``` ```
@ -192,10 +190,6 @@ Of course you need to modify `<your-nc-domain>` to the domain on which you want
[http.middlewares.nc-middlewares-secure-headers.headers] [http.middlewares.nc-middlewares-secure-headers.headers]
hostsProxyHeaders = ["X-Forwarded-Host"] hostsProxyHeaders = ["X-Forwarded-Host"]
sslRedirect = true sslRedirect = true
stsSeconds = 63072000
stsIncludeSubdomains = true
stsPreload = true
forceSTSHeader = true
referrerPolicy = "same-origin" referrerPolicy = "same-origin"
X-Robots-Tag = "none" X-Robots-Tag = "none"
``` ```