** Changed in: mahara
Status: Fix Committed => Fix Released
--
You received this bug notification because you are a member of Mahara
Contributors, which is subscribed to Mahara.
Matching subscriptions: Subscription for all Mahara Contributors -- please ask
on #mahara-dev or mahara.org
** Tags removed: nominatedfeature
** Tags added: newfeature
--
You received this bug notification because you are a member of Mahara
Contributors, which is subscribed to Mahara.
Matching subscriptions: Subscription for all Mahara Contributors -- please ask
on #mahara-dev or mahara.org forum
If NGinx sets HSTS headers as well, then you can turn the setting off in
Mahara:
Log in and go to Admin -> Configure site -> Site options -> Security
settings and set "HSTS override" to "Yes"
To verify things are working you should see in the headers
strict-transport-security: max-age=15768000
The associated WR333970 has the following update from Robert:
Ok, I've spoken with John Morton and now I understand what is happening
So I thought the issue was fixed because I was using a firefox browser
and it was only showing the first Strict-Transport-Security header (the
one set by Mahara)
** Changed in: mahara
Status: In Progress => Fix Committed
** Tags added: nominatedfeature
--
You received this bug notification because you are a member of Mahara
Contributors, which is subscribed to Mahara.
Matching subscriptions: Subscription for all Mahara Contributors -- please ask
** Changed in: mahara
Milestone: 20.04rc2 => 20.10.0
--
You received this bug notification because you are a member of Mahara
Contributors, which is subscribed to Mahara.
Matching subscriptions: Subscription for all Mahara Contributors -- please ask
on #mahara-dev or mahara.org forum before
6 matches
Mail list logo