mirror of
https://github.com/rails/rails.git
synced 2022-11-09 12:12:34 -05:00
Fix HSTS default expire in ActionDispatch::SSL docs.
This commit is contained in:
parent
e57bf9d28b
commit
7c4716008d
1 changed files with 2 additions and 1 deletions
|
@ -15,7 +15,8 @@ module ActionDispatch
|
|||
#
|
||||
# Configure HSTS with `hsts: { … }`:
|
||||
# * `expires`: How long, in seconds, these settings will stick. Defaults to
|
||||
# `18.weeks`, the minimum required to qualify for browser preload lists.
|
||||
# `180.days` (recommended). The minimum required to qualify for browser
|
||||
# preload lists is `18.weeks`.
|
||||
# * `subdomains`: Set to `true` to tell the browser to apply these settings
|
||||
# to all subdomains. This protects your cookies from interception by a
|
||||
# vulnerable site on a subdomain. Defaults to `false`.
|
||||
|
|
Loading…
Reference in a new issue