From 3991e51b7e301ba4cc4d57c88cc408198c409a61 Mon Sep 17 00:00:00 2001
From: Daniel Micay <danielmicay@gmail.com>
Date: Thu, 11 Aug 2022 13:53:31 -0400
Subject: [PATCH] remove legacy Expect-CT header

---
 nginx/snippets/security-headers-base.conf | 3 ---
 1 file changed, 3 deletions(-)

diff --git a/nginx/snippets/security-headers-base.conf b/nginx/snippets/security-headers-base.conf
index 8fe43c17..aa13ee38 100644
--- a/nginx/snippets/security-headers-base.conf
+++ b/nginx/snippets/security-headers-base.conf
@@ -5,9 +5,6 @@ add_header Cross-Origin-Opener-Policy "same-origin" always;
 add_header Cross-Origin-Embedder-Policy "require-corp" always;
 add_header Origin-Agent-Cluster "?1" always;
 
-# obsolete when client system time is correct
-add_header Expect-CT "enforce, max-age=63072000" always;
-
 # obsolete and replaced with Content-Security-Policy frame-ancestors 'none'
 add_header X-Frame-Options "DENY" always;