From e4b7a421a8b84ff038ffb6923b7b9025c1b7654a Mon Sep 17 00:00:00 2001
From: Adar Nimrod <nimrod@shore.co.il>
Date: Wed, 2 Dec 2020 01:08:22 +0200
Subject: [PATCH] Don't pass the Strict-Transport-Security header from
 upstream.

We set it in the proxy anyway, don't send 2 Strict-Transport-Security
headers.
---
 snippets/proxy-headers.conf | 1 +
 1 file changed, 1 insertion(+)

diff --git a/snippets/proxy-headers.conf b/snippets/proxy-headers.conf
index 30311b6..55c1cfb 100644
--- a/snippets/proxy-headers.conf
+++ b/snippets/proxy-headers.conf
@@ -3,3 +3,4 @@ proxy_set_header    X-Forwarded-Proto $scheme;
 proxy_set_header    X-Forwarded-For $proxy_add_x_forwarded_for;
 proxy_set_header    Host $host;
 proxy_set_header    X-Real-IP $remote_addr;
+proxy_hide_header   Strict-Transport-Security;
-- 
GitLab