add sameorigin header

2019-10-08 14:29:57 +02:00 · 2019-10-08 14:29:57 +02:00 · 4bae3cb9fa
commit 4bae3cb9fa
parent 124ee44164
1 changed files with 3 additions and 2 deletions
--- a/rootfs/etc/confd/templates/nextcloud.conf.tmpl
+++ b/rootfs/etc/confd/templates/nextcloud.conf.tmpl
@ -16,6 +16,7 @@ server {
    add_header X-Download-Options noopen;
    add_header X-Permitted-Cross-Domain-Policies none;
    add_header Referrer-Policy no-referrer;
    add_header X-Frame-Options "SAMEORIGIN" always;
    fastcgi_hide_header X-Powered-By;
@ -28,11 +29,11 @@ server {
    }
    location = /.well-known/carddav {
-        return 301 $scheme://$host/remote.php/dav;
+      return 301 $scheme://$host:$server_port/remote.php/dav;
    }
    location = /.well-known/caldav {
-        return 301 $scheme://$host/remote.php/dav;
+      return 301 $scheme://$host:$server_port/remote.php/dav;
    }
    client_max_body_size {{getenv "MAX_UPLOAD_SIZE"}};