From dcc67e86a6f561c5559b4a16a3a12bd068aeee40 Mon Sep 17 00:00:00 2001
From: Ronald Claveau <sousmangoosta@aliel.fr>
Date: Sun, 11 Dec 2022 18:43:03 +0100
Subject: [PATCH] Optionally load the hsts with preload

---
 config/environments/production.rb | 1 +
 1 file changed, 1 insertion(+)

diff --git a/config/environments/production.rb b/config/environments/production.rb
index 5ea9ea9bacf..49d2984f318 100644
--- a/config/environments/production.rb
+++ b/config/environments/production.rb
@@ -46,6 +46,7 @@ Rails.application.configure do
 
   config.force_ssl = true
   config.ssl_options = {
+    hsts: { preload: ENV['HSTS_PRELOAD'] == 'true' },
     redirect: {
       exclude: -> request { request.path.start_with?('/health') || request.headers["Host"].end_with?('.onion') || request.headers["Host"].end_with?('.i2p') }
     }