IntenseWebs/grafana
3
0
Fork 0
mirror of https://github.com/grafana/grafana.git synced 2025-02-25 18:55:37 -06:00
Code Issues Packages Projects Releases Wiki Activity

Middleware: Don't require HTTPS for HSTS headers to be emitted (#35147)

Browse Source 
Grafana itself may not be serving content over HTTPS, but it may be
behind a transparent proxy which does.

Fixes #26770.  Based on #26868.
This commit is contained in:
Alex Vandiver
2022-01-27 22:23:28 -08:00
committed by GitHub
parent 7b476c19c2
commit 844b194f5b
5 changed files with 2 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
conf/sample.ini
View File

@@ -259,7 +259,6 @@
;allow_embedding = false
# Set to true if you want to enable http strict transport security (HSTS) response header.
# This is only sent when HTTPS is enabled in this configuration.
# HSTS tells browsers that the site should only be accessed using HTTPS.
;strict_transport_security = false