added HSTS header

This commit is contained in:
Danny Coates 2017-07-17 12:36:32 -07:00
parent 2cf2fcebc9
commit 2127857790
No known key found for this signature in database
GPG key ID: 4C442633C62E00CB

View file

@ -32,6 +32,10 @@ app.engine(
app.set('view engine', 'handlebars');
app.use(helmet());
app.use(helmet.hsts({
maxAge: 31536000,
force: conf.env === 'production'
}));
app.use(
helmet.contentSecurityPolicy({
directives: {