khanh.pndc/nextcloud-docs
1
0
Fork 0
mirror of https://github.com/nextcloud/documentation.git synced 2026-01-03 18:26:42 +07:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #897 from nextcloud/update-referrerpolicy

Browse Source 
Add hint for Referrer-Policy
This commit is contained in:
Morris Jobke
2018-10-12 16:33:45 +02:00
committed by GitHub
parent 2b11bb8f4a cf8927deec
commit 6486854fcd
1 changed files with 2 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
admin_manual/configuration_server/harden_server.rst
View File

@@ -186,6 +186,8 @@ These include:
- Instructs search machines to not index these pages.
- ``X-Frame-Options: SAMEORIGIN``
- Prevents embedding of the Nextcloud instance within an iframe from other domains to prevent Clickjacking and other similar attacks.
- ``Referrer-Policy: no-referrer``
- The default `no-referrer` policy instructs the browser not to send referrer information along with requests to any origin.
These headers are hard-coded into the Nextcloud server, and need no intervention
by the server administrator.