From 21278577904059cbb867f375018656c7847a6f15 Mon Sep 17 00:00:00 2001
From: Danny Coates <dannycoates@gmail.com>
Date: Mon, 17 Jul 2017 12:36:32 -0700
Subject: [PATCH] added HSTS header

---
 server/server.js | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/server/server.js b/server/server.js
index e3c838a0..e64a1d9c 100644
--- a/server/server.js
+++ b/server/server.js
@@ -32,6 +32,10 @@ app.engine(
 app.set('view engine', 'handlebars');
 
 app.use(helmet());
+app.use(helmet.hsts({
+  maxAge: 31536000,
+  force: conf.env === 'production'
+}));
 app.use(
   helmet.contentSecurityPolicy({
     directives: {