csp plug: add support for certificate transparency

2018-11-11 06:53:42 +00:00 · 2018-11-11 06:53:42 +00:00 · df72978dce
commit df72978dce
parent 331cf6ada1
3 changed files with 7 additions and 3 deletions
--- a/config/config.exs
+++ b/config/config.exs
@ -179,7 +179,8 @@ config :pleroma, :suggestions,
 config :pleroma, :csp,
  enabled: true,
  sts: false,
-  sts_max_age: 31_536_000
+  sts_max_age: 31_536_000,
+  ct_max_age: 2_592_000

 config :cors_plug,
  max_age: 86_400,
--- a/config/config.md
+++ b/config/config.md
@ -85,3 +85,4 @@ This section is used to configure Pleroma-FE, unless ``:managed_config`` in ``:i
 * ``enabled``: Whether the managed content security policy is enabled
 * ``sts``: Whether to additionally send a `Strict-Transport-Security` header
 * ``sts_max_age``: The maximum age for the `Strict-Transport-Security` header if sent
+* ``ct_max_age``: The maximum age for the `Except-CT` header if sent