GitHub-Bitwarden
/
server
mirror of https://github.com/bitwarden/server.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
Browse Source

add X-Frame-Options specifically

pull/358/head
Kyle Spearrin 7 years ago
parent
2562d5a40d
commit
6b8fdc1a98
2 changed files with 6 additions and 1 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Split View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 1
      util/Nginx/security-headers.conf
  2. 6
      util/Setup/Templates/NginxConfig.hbs

1
util/Nginx/security-headers.conf
Unescape View File

@ -1,4 +1,3 @@ @@ -1,4 +1,3 @@
add_header Referrer-Policy same-origin;
add_header X-Frame-Options SAMEORIGIN;
add_header X-Content-Type-Options nosniff;
add_header X-XSS-Protection "1; mode=block";

6
util/Setup/Templates/NginxConfig.hbs
Unescape View File

@ -55,6 +55,7 @@ server { @@ -55,6 +55,7 @@ server {
{{/if}}
include /etc/nginx/security-headers.conf;
add_header Content-Security-Policy "{{{ContentSecurityPolicy}}}";
add_header X-Frame-Options SAMEORIGIN;
}
location = /app-id.json {
@ -103,5 +104,10 @@ server { @@ -103,5 +104,10 @@ server {
location /admin {
proxy_pass http://admin:5000;
{{#if Ssl}}
include /etc/nginx/security-headers-ssl.conf;
{{/if}}
include /etc/nginx/security-headers.conf;
add_header X-Frame-Options SAMEORIGIN;
}
}

Write Preview
Loading…
Cancel
Save