From a273712d53c1bb191ce37481a0dde9153a4bb247 Mon Sep 17 00:00:00 2001 From: Wonderfall Date: Wed, 28 Sep 2016 23:15:22 +0200 Subject: [PATCH] nextcloud: remove extra semicolon for HSTS --- nextcloud/10.0/nginx.conf | 2 +- nextcloud/9.0/nginx.conf | 2 +- nextcloud/daily/nginx.conf | 2 +- 3 files changed, 3 insertions(+), 3 deletions(-) diff --git a/nextcloud/10.0/nginx.conf b/nextcloud/10.0/nginx.conf index 8deb6ec..0633855 100644 --- a/nextcloud/10.0/nginx.conf +++ b/nextcloud/10.0/nginx.conf @@ -40,7 +40,7 @@ http { error_page 403 /core/templates/403.php; error_page 404 /core/templates/404.php; - add_header Strict-Transport-Security "max-age=15768000; includeSubDomains; preload;"; + add_header Strict-Transport-Security "max-age=15768000; includeSubDomains; preload"; add_header X-Frame-Options "SAMEORIGIN"; add_header X-Content-Type-Options nosniff; add_header X-XSS-Protection "1; mode=block"; diff --git a/nextcloud/9.0/nginx.conf b/nextcloud/9.0/nginx.conf index 8deb6ec..0633855 100644 --- a/nextcloud/9.0/nginx.conf +++ b/nextcloud/9.0/nginx.conf @@ -40,7 +40,7 @@ http { error_page 403 /core/templates/403.php; error_page 404 /core/templates/404.php; - add_header Strict-Transport-Security "max-age=15768000; includeSubDomains; preload;"; + add_header Strict-Transport-Security "max-age=15768000; includeSubDomains; preload"; add_header X-Frame-Options "SAMEORIGIN"; add_header X-Content-Type-Options nosniff; add_header X-XSS-Protection "1; mode=block"; diff --git a/nextcloud/daily/nginx.conf b/nextcloud/daily/nginx.conf index 8deb6ec..0633855 100644 --- a/nextcloud/daily/nginx.conf +++ b/nextcloud/daily/nginx.conf @@ -40,7 +40,7 @@ http { error_page 403 /core/templates/403.php; error_page 404 /core/templates/404.php; - add_header Strict-Transport-Security "max-age=15768000; includeSubDomains; preload;"; + add_header Strict-Transport-Security "max-age=15768000; includeSubDomains; preload"; add_header X-Frame-Options "SAMEORIGIN"; add_header X-Content-Type-Options nosniff; add_header X-XSS-Protection "1; mode=block";