kris/homelab
kris/homelab
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

Set X-Frame-Options header for Nextcloud

Browse Source
This commit is contained in:
Kris Lamoureux 2020-09-05 03:50:46 -04:00
parent 0fcd79040e
commit 8a9dea2ec8
Signed by: kris
GPG Key ID: 3EDA9C3441EDA925
2 changed files with 4 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
roles/nextcloud/tasks/main.yml
View File

@ -33,7 +33,7 @@
traefik.http.routers.nextcloud.rule: "Host(`{{ nextcloud_domain }}`)" traefik.http.routers.nextcloud.rule: "Host(`{{ nextcloud_domain }}`)"
traefik.http.routers.nextcloud.entrypoints: websecure traefik.http.routers.nextcloud.entrypoints: websecure
traefik.http.routers.nextcloud.tls.certresolver: letsencrypt traefik.http.routers.nextcloud.tls.certresolver: letsencrypt
traefik.http.routers.nextcloud.middlewares: "securehttps@file,nextcloud-webdav" traefik.http.routers.nextcloud.middlewares: "securehttps@file,nextcloud@file,nextcloud-webdav"
traefik.http.middlewares.nextcloud-webdav.redirectregex.regex: "https://(.*)/.well-known/(card|cal)dav" traefik.http.middlewares.nextcloud-webdav.redirectregex.regex: "https://(.*)/.well-known/(card|cal)dav"
traefik.http.middlewares.nextcloud-webdav.redirectregex.replacement: "https://${1}/remote.php/dav/" traefik.http.middlewares.nextcloud-webdav.redirectregex.replacement: "https://${1}/remote.php/dav/"
traefik.http.middlewares.nextcloud-webdav.redirectregex.permanent: "true" traefik.http.middlewares.nextcloud-webdav.redirectregex.permanent: "true"

3
roles/traefik/templates/security.yml.j2
View File

@ -5,6 +5,9 @@ tls:
http: http:
middlewares: middlewares:
nextcloud:
headers:
customFrameOptionsValue: SAMEORIGIN
securehttps: securehttps:
headers: headers:
frameDeny: true frameDeny: true