From 7c854f7e9cdf6a8d900801a034fe10785042492a Mon Sep 17 00:00:00 2001
From: rokube <rokube@git>
Date: Thu, 1 Mar 2018 09:47:39 +0100
Subject: [PATCH] Added Referrer-Policy HTTP Security Header for Nextcloud
 Nginx.

---
 nextcloud/rootfs/nginx/sites-enabled/nginx.conf | 1 +
 1 file changed, 1 insertion(+)

diff --git a/nextcloud/rootfs/nginx/sites-enabled/nginx.conf b/nextcloud/rootfs/nginx/sites-enabled/nginx.conf
index 2fb1549..b9744c8 100644
--- a/nextcloud/rootfs/nginx/sites-enabled/nginx.conf
+++ b/nextcloud/rootfs/nginx/sites-enabled/nginx.conf
@@ -10,6 +10,7 @@ server {
         add_header X-Robots-Tag none;
         add_header X-Download-Options noopen;
         add_header X-Permitted-Cross-Domain-Policies none;
+        add_header Referrer-Policy "same-origin";
 
         location = /robots.txt {
             allow all;