From 6ae6ab514158a975b0483577c7a3405896c0e704 Mon Sep 17 00:00:00 2001
From: Reed Loden <reed@reedloden.com>
Date: Tue, 19 Feb 2013 10:30:37 -0800
Subject: Bug 842651 - Bump HSTS max-age from one month to one year.

---
 Bugzilla/Constants.pm | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

(limited to 'Bugzilla/Constants.pm')

diff --git a/Bugzilla/Constants.pm b/Bugzilla/Constants.pm
index 0658244a1..71cbe4599 100644
--- a/Bugzilla/Constants.pm
+++ b/Bugzilla/Constants.pm
@@ -434,8 +434,8 @@ use constant MAX_LOGIN_ATTEMPTS => 5;
 use constant LOGIN_LOCKOUT_INTERVAL => 30;
 
 # The maximum number of seconds the Strict-Transport-Security header
-# will remain valid. BMO uses one month.
-use constant MAX_STS_AGE => 2629744;
+# will remain valid. BMO uses one year.
+use constant MAX_STS_AGE => 31536000;
 
 # Protocols which are considered as safe.
 use constant SAFE_PROTOCOLS => ('afs', 'cid', 'ftp', 'gopher', 'http', 'https',
-- 
cgit v1.2.3-24-g4f1b