From e780346dbd14a8ced75e6e0dfea08ca72fee7c15 Mon Sep 17 00:00:00 2001
From: Maurice Walker <maurice@walker.earth>
Date: Thu, 6 May 2021 09:19:55 +0200
Subject: [PATCH] lighttpd: set HSTS max-age to 1 year (#4976)

---
 src/etc/inc/plugins.inc.d/webgui.inc | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/etc/inc/plugins.inc.d/webgui.inc b/src/etc/inc/plugins.inc.d/webgui.inc
index c327e4f9b..c2cd8cf59 100644
--- a/src/etc/inc/plugins.inc.d/webgui.inc
+++ b/src/etc/inc/plugins.inc.d/webgui.inc
@@ -412,7 +412,7 @@ EOD;
 
         if (!empty($config['system']['webgui']['ssl-hsts'])) {
             $lighty_config .= "\$HTTP[\"scheme\"] == \"https\" {\n";
-            $lighty_config .= "    setenv.add-response-header = (\"Strict-Transport-Security\" => \"max-age=15768000\" )\n";
+            $lighty_config .= "    setenv.add-response-header = (\"Strict-Transport-Security\" => \"max-age=31536000\" )\n";
             $lighty_config .= "}\n";
         }