From cc811522e0a629dae894bbb5d0573f3c0f2bad0a Mon Sep 17 00:00:00 2001
From: Girish Ramakrishnan <girish@cloudron.io>
Date: Sun, 2 Apr 2023 20:03:42 +0200
Subject: [PATCH] reverseproxy: prevent duplication of STS header

---
 CHANGES             | 1 +
 src/nginxconfig.ejs | 1 +
 2 files changed, 2 insertions(+)

diff --git a/CHANGES b/CHANGES
index 14757ee9d..7ce55c4be 100644
--- a/CHANGES
+++ b/CHANGES
@@ -2618,4 +2618,5 @@
 
 [7.4.1]
 * support: Fix issue where app support tickets could not be opened
+* reverseproxy: prevent duplication of STS header
 
diff --git a/src/nginxconfig.ejs b/src/nginxconfig.ejs
index 29c74681e..6c1de1e07 100644
--- a/src/nginxconfig.ejs
+++ b/src/nginxconfig.ejs
@@ -96,6 +96,7 @@ server {
     ssl_dhparam /home/yellowtent/platformdata/dhparams.pem;
 <% } -%>
 
+    proxy_hide_header Strict-Transport-Security;
     <% if (hstsPreload) { -%>
     # https://hstspreload.org/
     add_header Strict-Transport-Security "max-age=63072000; includeSubDomains; preload";