Merge pull request #23958 from owncloud/use-6-months-as-threshold-for-ssl

Use 6 months as SSL STS header threshold
author: Thomas Müller <DeepDiver1975@users.noreply.github.com> 2016-04-13 11:10:10 +0200
committer: Thomas Müller <DeepDiver1975@users.noreply.github.com> 2016-04-13 11:10:10 +0200
commit: 838e9e312673c2fb30796b07b6fa2542ee8f554e (patch)
tree: 16a6f8c9279237fe88ca8b76fc684bcbbacd7cf3 /core/js/setupchecks.js
parent: e90a3b5ba775a6f20cbb56060136212ada69564f (diff)
parent: e03d289b70030d8d016b927a9617827672cd6d0c (diff)
download: nextcloud-server-838e9e312673c2fb30796b07b6fa2542ee8f554e.tar.gz
nextcloud-server-838e9e312673c2fb30796b07b6fa2542ee8f554e.zip
1 files changed, 1 insertions, 1 deletions
diff --git a/core/js/setupchecks.js b/core/js/setupchecks.js
index 025cdb0fcd6..4cc50e51ae6 100644
--- a/core/js/setupchecks.js
+++ b/core/js/setupchecks.js
@@ -273,7 +273,7 @@
 						}
 					}
 
-					var minimumSeconds = 15768000;
+					var minimumSeconds = 15552000;
 					if(isNaN(transportSecurityValidity) || transportSecurityValidity <= (minimumSeconds - 1)) {
 						messages.push({
 							msg: t('core', 'The "Strict-Transport-Security" HTTP header is not configured to at least "{seconds}" seconds. For enhanced security we recommend enabling HSTS as described in our <a href="{docUrl}" rel="noreferrer">security tips</a>.', {'seconds': minimumSeconds, docUrl: '#admin-tips'}),
author	Thomas Müller <DeepDiver1975@users.noreply.github.com>	2016-04-13 11:10:10 +0200
committer	Thomas Müller <DeepDiver1975@users.noreply.github.com>	2016-04-13 11:10:10 +0200
commit	838e9e312673c2fb30796b07b6fa2542ee8f554e (patch)
tree	16a6f8c9279237fe88ca8b76fc684bcbbacd7cf3 /core/js/setupchecks.js
parent	e90a3b5ba775a6f20cbb56060136212ada69564f (diff)
parent	e03d289b70030d8d016b927a9617827672cd6d0c (diff)
download	nextcloud-server-838e9e312673c2fb30796b07b6fa2542ee8f554e.tar.gz nextcloud-server-838e9e312673c2fb30796b07b6fa2542ee8f554e.zip