Actions
action #14204
closedopenqa.opensuse.org sends an HSTS header twice
Status:
Rejected
Priority:
Normal
Assignee:
-
Category:
-
Target version:
-
Start date:
2016-10-13
Due date:
% Done:
0%
Estimated time:
Description
% curl -I https://openqa.opensuse.org/
HTTP/1.1 200 OK
Date: Thu, 13 Oct 2016 12:35:15 GMT
Server: Mojolicious (Perl)
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Length: 45523
Content-Type: text/html;charset=UTF-8
Set-Cookie: mojolicious=[...]; expires=Sat, 15 Oct 2016 12:35:15 GMT; path=/; HttpOnly
Strict-Transport-Security: max-age=31536000; includeSubDomains
So the Header Strict-Transport-Security: max-age=31536000; includeSubDomains
is sent twice.
https://openqa.suse.de doesn't have this problem.
Actions