diff options
| author | Daniel Schalla <daniel@schalla.me> | 2018-10-16 16:51:46 +0200 |
|---|---|---|
| committer | Christopher Speller <crspeller@gmail.com> | 2018-10-16 07:51:46 -0700 |
| commit | 557fd9ea187b1279b43ff63b94fedf2320aa3351 (patch) | |
| tree | 463fdbd5aefba8f94a61fb1338bf5e7bd123a5f6 /web/handlers.go | |
| parent | cedf6488e4d4d66c186facb4253513b1f7e775c6 (diff) | |
| download | chat-557fd9ea187b1279b43ff63b94fedf2320aa3351.tar.gz chat-557fd9ea187b1279b43ff63b94fedf2320aa3351.tar.bz2 chat-557fd9ea187b1279b43ff63b94fedf2320aa3351.zip | |
Set default ciphers, set tls 1.2 via config, set curve prefs (#9315)
Config Checks at StartUp Part1
Config Checks; Tests for TLS Server
HSTS header implementation + tests
make gofmt happy with new go version...
make gofmt happy with new go version #2...
fix logic bug
fix typo
Fix unnecessary code block
Diffstat (limited to 'web/handlers.go')
| -rw-r--r-- | web/handlers.go | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/web/handlers.go b/web/handlers.go index 71a43bc48..9b0705a5b 100644 --- a/web/handlers.go +++ b/web/handlers.go @@ -75,6 +75,10 @@ func (h Handler) ServeHTTP(w http.ResponseWriter, r *http.Request) { w.Header().Set(model.HEADER_REQUEST_ID, c.RequestId) w.Header().Set(model.HEADER_VERSION_ID, fmt.Sprintf("%v.%v.%v.%v", model.CurrentVersion, model.BuildNumber, c.App.ClientConfigHash(), c.App.License() != nil)) + if *c.App.Config().ServiceSettings.TLSStrictTransport { + w.Header().Set("Strict-Transport-Security", fmt.Sprintf("max-age=%d", *c.App.Config().ServiceSettings.TLSStrictTransportMaxAge)) + } + if h.IsStatic { // Instruct the browser not to display us in an iframe unless is the same origin for anti-clickjacking w.Header().Set("X-Frame-Options", "SAMEORIGIN") |