ia3andy
commented
2 years ago max-age=<expire-time>
The time, in seconds, that the browser should remember that a site is only to be accessed using HTTPS.
Closed ia3andy closed 2 years ago
ia3andy
commented
2 years ago max-age=<expire-time>
The time, in seconds, that the browser should remember that a site is only to be accessed using HTTPS.
gastaldi
commented
2 years ago @ia3andy thanks for the ticket! Want to submit a PR fixing this?
https://github.com/quarkusio/registry.quarkus.io/blob/937bfc0d309099d46db04276dedfe2f3ee3e462c/src/main/resources/application.properties#L24
It seems 360 is not a good value for
max-age, 1 year would bemax-age=31536000: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Strict-Transport-Security