set max-age for hsts header

Author: litty-tt

server/server.js

@@ -54,8 +54,9 @@ app.use(helmet.contentSecurityPolicy({
 // Set secure headers
 if (process.env.PRODUCTION === true || process.env.PRODUCTION == "true") {
   console.log("Running in production - setting headers")
-  app.use(helmet.hsts());
-  // app.use(helmet.contentSecurityPolicy()); Need more testing
+  app.use(helmet.hsts({
+    maxAge: 31536000,
+  }));  
   app.use(helmet.noSniff());
   app.use(helmet.frameguard());
 }