mirrors/nextcloud-documentation
3
0
Fork 0
mirror of https://github.com/nextcloud/documentation.git synced 2025-10-26 11:18:02 +00:00
Code Issues Packages Projects Releases Wiki Activity

Add hint for Referrer-Policy

Browse Source 
Signed-off-by: Patrik Kernstock <info@pkern.at>

Related to nextcloud/server#11798
This commit is contained in:
Patrik Kernstock 2018-10-12 16:26:28 +02:00 committed by GitHub
parent 2b11bb8f4a
commit cf8927deec
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 2 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
admin_manual/configuration_server/harden_server.rst
View File

@ -186,6 +186,8 @@ These include:
- Instructs search machines to not index these pages.
- ``X-Frame-Options: SAMEORIGIN``
- Prevents embedding of the Nextcloud instance within an iframe from other domains to prevent Clickjacking and other similar attacks.
- ``Referrer-Policy: no-referrer``
- The default `no-referrer` policy instructs the browser not to send referrer information along with requests to any origin.
These headers are hard-coded into the Nextcloud server, and need no intervention
by the server administrator.