|
@@ -7,6 +7,13 @@ def test_web1_HSTS_default(docker_compose, nginxproxy):
|
|
assert "Strict-Transport-Security" in r.headers
|
|
assert "Strict-Transport-Security" in r.headers
|
|
assert "max-age=31536000" == r.headers["Strict-Transport-Security"]
|
|
assert "max-age=31536000" == r.headers["Strict-Transport-Security"]
|
|
|
|
|
|
|
|
+# Regression test to ensure HSTS is enabled even when the upstream sends an error in response
|
|
|
|
+# Issue #1073 https://github.com/jwilder/nginx-proxy/pull/1073
|
|
|
|
+def test_web1_HSTS_error(docker_compose, nginxproxy):
|
|
|
|
+ r = nginxproxy.get("https://web1.nginx-proxy.tld/status/500", allow_redirects=False)
|
|
|
|
+ assert "Strict-Transport-Security" in r.headers
|
|
|
|
+ assert "max-age=31536000" == r.headers["Strict-Transport-Security"]
|
|
|
|
+
|
|
def test_web2_HSTS_off(docker_compose, nginxproxy):
|
|
def test_web2_HSTS_off(docker_compose, nginxproxy):
|
|
r = nginxproxy.get("https://web2.nginx-proxy.tld/port", allow_redirects=False)
|
|
r = nginxproxy.get("https://web2.nginx-proxy.tld/port", allow_redirects=False)
|
|
assert "answer from port 81\n" in r.text
|
|
assert "answer from port 81\n" in r.text
|