From 6c01605f1953e2331e28b7d6b41266c48a88aae8 Mon Sep 17 00:00:00 2001
From: Jonas Smedegaard <dr@jones.dk>
Date: Mon, 19 Oct 2020 16:41:54 +0200
Subject: fix set (not add) HSTS header

---
 apache2/conf-available/local-securityheaders.conf | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/apache2/conf-available/local-securityheaders.conf b/apache2/conf-available/local-securityheaders.conf
index 0930702..7f44eed 100644
--- a/apache2/conf-available/local-securityheaders.conf
+++ b/apache2/conf-available/local-securityheaders.conf
@@ -6,18 +6,18 @@
 <IfDefine !_NO_HSTS>
 <IfDefine !_NO_HSTS_SUBDOMAINS>
 <IfDefine !_NO_HSTS_PRELOAD>
-	Header add Strict-Transport-Security: "max-age=15768000;includeSubdomains;preload"
+	Header set Strict-Transport-Security: "max-age=15768000;includeSubdomains;preload"
 </IfDefine>
 <IfDefine _NO_HSTS_PRELOAD>
-	Header add Strict-Transport-Security: "max-age=15768000;includeSubdomains"
+	Header set Strict-Transport-Security: "max-age=15768000;includeSubdomains"
 </IfDefine>
 </IfDefine>
 <IfDefine _NO_HSTS_SUBDOMAINS>
 <IfDefine !_NO_HSTS_PRELOAD>
-	Header add Strict-Transport-Security: "max-age=15768000;preload"
+	Header set Strict-Transport-Security: "max-age=15768000;preload"
 </IfDefine>
 <IfDefine _NO_HSTS_PRELOAD>
-	Header add Strict-Transport-Security: "max-age=15768000"
+	Header set Strict-Transport-Security: "max-age=15768000"
 </IfDefine>
 </IfDefine>
 </IfDefine>
-- 
cgit v1.2.3