From 0d944ae8e402714dbefcfcfef91c4a6fd10d7ee1 Mon Sep 17 00:00:00 2001
From: Jannik Beyerstedt <code@jannikbeyerstedt.de>
Date: Tue, 31 May 2016 13:56:46 +0200
Subject: [PATCH] [CONFIG] add HSTS header

---
 site/config/config.php | 1 +
 1 file changed, 1 insertion(+)

diff --git a/site/config/config.php b/site/config/config.php
index 16ac5d8..904ac71 100644
--- a/site/config/config.php
+++ b/site/config/config.php
@@ -3,6 +3,7 @@ header("Content-Security-Policy: default-src 'self'; style-src 'self' 'unsafe-in
 //header("X-Content-Type-Options: nosniff");  // enabled at server-side
 //header("X-Frame-Options: deny");            // enabled at server-side
 //header("X-Xss-Protection: 1; mode=block");  // enabled at server-side
+header("Strict-Transport-Security: max-age=31536000");
 
 /*
 License Setup