Merge pull request #389 from timlrx/hsts

exclude preload from hsts header
2022-02-13 23:32:27 +08:00
parent fc03004fb6 5553b0dc5a
commit 72ca0868e1
1 changed files with 1 additions and 1 deletions
--- a/next.config.js
+++ b/next.config.js
@@ -43,7 +43,7 @@ const securityHeaders = [
  // https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Strict-Transport-Security
  {
    key: 'Strict-Transport-Security',
-    value: 'max-age=31536000; includeSubDomains; preload',
+    value: 'max-age=31536000; includeSubDomains',
  },
  // https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Feature-Policy
  {