Add X-Frame-Options header to securehttps

2020-09-15 23:06:33 -04:00 · 2020-09-15 23:06:33 -04:00 · dd8e7d67aa
commit dd8e7d67aa
parent 66dedbcbf7
2 changed files with 2 additions and 4 deletions
--- a/roles/nextcloud/tasks/main.yml
+++ b/roles/nextcloud/tasks/main.yml
@ -33,7 +33,7 @@
      traefik.http.routers.nextcloud.rule: "Host(`{{ nextcloud_domain }}`)"
      traefik.http.routers.nextcloud.entrypoints: websecure
      traefik.http.routers.nextcloud.tls.certresolver: letsencrypt
-      traefik.http.routers.nextcloud.middlewares: "securehttps@file,nextcloud@file,nextcloud-webdav"
+      traefik.http.routers.nextcloud.middlewares: "securehttps@file,nextcloud-webdav"
      traefik.http.middlewares.nextcloud-webdav.redirectregex.regex: "https://(.*)/.well-known/(card|cal)dav"
      traefik.http.middlewares.nextcloud-webdav.redirectregex.replacement: "https://${1}/remote.php/dav/"
      traefik.http.middlewares.nextcloud-webdav.redirectregex.permanent: "true"
--- a/roles/traefik/templates/security.yml.j2
+++ b/roles/traefik/templates/security.yml.j2
@ -5,9 +5,6 @@ tls:

 http:
  middlewares:
-    nextcloud:
-      headers:
-        customFrameOptionsValue: SAMEORIGIN
    securehttps:
      headers:
        frameDeny: true
@ -16,3 +13,4 @@ http:
        contentTypeNosniff: true
        stsPreload: {{ traefik_hsts_preload }}
        stsSeconds: {{ traefik_hsts_seconds }}
+        customFrameOptionsValue: SAMEORIGIN