From 5390c9c7a271ca6e781cf0ac849f5a943a00f388 Mon Sep 17 00:00:00 2001
From: Sam Al-Sapti <sam@sapti.me>
Date: Sat, 10 Feb 2024 15:30:17 +0100
Subject: [PATCH] HSTS preload doesn't work on subdomains

---
 roles/proxy/templates/caddy/Caddyfile.j2 | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/roles/proxy/templates/caddy/Caddyfile.j2 b/roles/proxy/templates/caddy/Caddyfile.j2
index 0337b61..626ce07 100644
--- a/roles/proxy/templates/caddy/Caddyfile.j2
+++ b/roles/proxy/templates/caddy/Caddyfile.j2
@@ -10,7 +10,7 @@ cloud.{{ proxy_vars[env].app01.base_domain }} {
     }
 
     header {
-        Strict-Transport-Security "max-age=31536000; includeSubDomains; preload"
+        Strict-Transport-Security "max-age=31536000; includeSubDomains"
         -Server
     }
 
@@ -37,7 +37,7 @@ ipfs-gateway.{{ proxy_vars[env].app01.base_domain }},
     }
 
     header {
-        Strict-Transport-Security "max-age=31536000; includeSubDomains; preload"
+        Strict-Transport-Security "max-age=31536000; includeSubDomains"
         -Server
     }
 
@@ -62,7 +62,7 @@ ipfs.local.{{ proxy_vars[env].app01.base_domain }} {
     }
 
     header {
-        Strict-Transport-Security "max-age=31536000; includeSubDomains; preload"
+        Strict-Transport-Security "max-age=31536000; includeSubDomains"
         -Server
     }
 
@@ -83,7 +83,7 @@ xmr.local.{{ proxy_vars[env].app01.base_domain }} {
     }
 
     header {
-        Strict-Transport-Security "max-age=31536000; includeSubDomains; preload"
+        Strict-Transport-Security "max-age=31536000; includeSubDomains"
         -Server
     }