stepus53/ustk-todolist
1
0
Fork 0
mirror of https://github.com/usatiuk/ustk-todolist.git synced 2025-10-28 07:37:49 +01:00
Code Issues Packages Projects Releases Wiki Activity

use hsts

Browse Source
This commit is contained in:
Stepan Usatiuk
2018-06-03 19:24:49 +03:00
parent 8d59dd5f1e
commit be2efc5710
3 changed files with 16 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
app.js
View File

@@ -6,6 +6,7 @@ const cors = require('cors');
const config = require('./config'); const config = require('./config');
const db = require('./config/db'); const db = require('./config/db');
const path = require('path'); const path = require('path');
const hsts = require('hsts');
require('./models/TodoList'); require('./models/TodoList');
require('./models/User'); require('./models/User');
@@ -19,6 +20,15 @@ process.env.NODE_ENV === 'production'
? app.use(morgan('combined')) ? app.use(morgan('combined'))
: app.use(morgan('dev')); : app.use(morgan('dev'));
if (process.env.NODE_ENV === 'production' && process.env.HSTS === true) {
app.use(
hsts({
maxAge: 31536000,
includeSubDomains: true,
}),
);
}
const passport = require('./config/passport'); const passport = require('./config/passport');
app.use(passport.initialize()); app.use(passport.initialize());

5
package-lock.json generated
View File

@@ -3856,6 +3856,11 @@
"integrity": "sha512-lIbgIIQA3lz5XaB6vxakj6sDHADJiZadYEJB+FgA+C4nubM1NwcuvUr9EJPmnH1skZqpqUzWborWo8EIUi0Sdw==", "integrity": "sha512-lIbgIIQA3lz5XaB6vxakj6sDHADJiZadYEJB+FgA+C4nubM1NwcuvUr9EJPmnH1skZqpqUzWborWo8EIUi0Sdw==",
"dev": true "dev": true
}, },
"hsts": {
"version": "2.1.0",
"resolved": "https://registry.npmjs.org/hsts/-/hsts-2.1.0.tgz",
"integrity": "sha512-zXhh/DqgrTXJ7erTN6Fh5k/xjMhDGXCqdYN3wvxUvGUQvnxcFfUd8E+6vLg/nk3ss1TYMb+DhRl25fYABioTvA=="
},
"html-encoding-sniffer": { "html-encoding-sniffer": {
"version": "1.0.2", "version": "1.0.2",
"resolved": "https://registry.npmjs.org/html-encoding-sniffer/-/html-encoding-sniffer-1.0.2.tgz", "resolved": "https://registry.npmjs.org/html-encoding-sniffer/-/html-encoding-sniffer-1.0.2.tgz",

1
package.json
View File

@@ -21,6 +21,7 @@
"dotenv": "^5.0.1", "dotenv": "^5.0.1",
"express": "^4.16.3", "express": "^4.16.3",
"express-jwt": "^5.3.1", "express-jwt": "^5.3.1",
"hsts": "^2.1.0",
"jsonwebtoken": "^8.2.1", "jsonwebtoken": "^8.2.1",
"mongoose": "^5.1.1", "mongoose": "^5.1.1",
"mongoose-unique-validator": "^2.0.1", "mongoose-unique-validator": "^2.0.1",