From d50212c66c537041537d3f8209a7475657731d89 Mon Sep 17 00:00:00 2001 From: Alan Orth Date: Thu, 31 Mar 2016 13:34:05 +0300 Subject: [PATCH] roles/nginx: Remove extra semi colon in HSTS preload header Google's preload check application pointed out that there was an extra semi colon in the HTTP header: $ hstspreload checkdomain alaninkenya.org Warning: 1. Syntax warning: Header includes an empty directive or extra semicolon. The tool can be downloaded here: https://github.com/chromium/hstspreload Signed-off-by: Alan Orth --- roles/nginx/templates/https.j2 | 2 +- roles/nginx/templates/vhost.conf.j2 | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/roles/nginx/templates/https.j2 b/roles/nginx/templates/https.j2 index 749c298..31cb5b2 100644 --- a/roles/nginx/templates/https.j2 +++ b/roles/nginx/templates/https.j2 @@ -52,5 +52,5 @@ # Enable this if you want HSTS (recommended, but be careful) # Include all subdomains and indicate to Google that we want this pre-loaded in Chrome's HSTS store # See: https://hstspreload.appspot.com/ - add_header Strict-Transport-Security "max-age=15768000; includeSubDomains; preload;" always; + add_header Strict-Transport-Security "max-age=15768000; includeSubDomains; preload" always; {% endif %} diff --git a/roles/nginx/templates/vhost.conf.j2 b/roles/nginx/templates/vhost.conf.j2 index 962e036..eec183a 100644 --- a/roles/nginx/templates/vhost.conf.j2 +++ b/roles/nginx/templates/vhost.conf.j2 @@ -71,7 +71,7 @@ server { # Enable this if you want HSTS (recommended, but be careful) # Include all subdomains and indicate to Google that we want this pre-loaded in Chrome's HSTS store # See: https://hstspreload.appspot.com/ - add_header Strict-Transport-Security "max-age=15768000; includeSubDomains; preload;" always; + add_header Strict-Transport-Security "max-age=15768000; includeSubDomains; preload" always; {% endif %} include extra-security.conf;