From 134a933f87b82d49b741b987d67de0eb44c903c6 Mon Sep 17 00:00:00 2001
From: Simon Rettberg
Date: Wed, 29 Mar 2017 13:22:08 +0200
Subject: [webinterface] Try to redirect back to HTTP when HTTPS gets disabled

---
 modules-available/webinterface/page.inc.php | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

(limited to 'modules-available/webinterface/page.inc.php')

diff --git a/modules-available/webinterface/page.inc.php b/modules-available/webinterface/page.inc.php
index 35e14dc5..93d659f0 100644
--- a/modules-available/webinterface/page.inc.php
+++ b/modules-available/webinterface/page.inc.php
@@ -26,9 +26,11 @@ class Page_WebInterface extends Page
 	private function actionConfigureHttps()
 	{
 		$task = false;
+		$off = '';
 		switch (Request::post('mode')) {
 			case 'off':
 				$task = $this->setHttpsOff();
+				$off = '&hsts=off';
 				break;
 			case 'random':
 				$task = $this->setHttpsRandomCert();
@@ -42,7 +44,7 @@ class Page_WebInterface extends Page
 		}
 		if (isset($task['id'])) {
 			Session::set('https-id', $task['id']);
-			Util::redirect('?do=WebInterface&show=httpsupdate');
+			Util::redirect('?do=WebInterface&show=httpsupdate' . $off);
 		}
 		Util::redirect('?do=WebInterface');
 	}
@@ -117,6 +119,7 @@ class Page_WebInterface extends Page
 	private function setHttpsOff()
 	{
 		Property::set(self::PROP_TYPE, 'off');
+		Header('Strict-Transport-Security: max-age=0', true);
 		return Taskmanager::submit('LighttpdHttps', array());
 	}
 
-- 
cgit v1.2.3-55-g7522