From d38e9186269f64cb1c82a2b3ebfb287fd7be1075 Mon Sep 17 00:00:00 2001
From: Roman Hoellen <info@hoellen.eu>
Date: Thu, 6 Sep 2018 11:06:25 +0200
Subject: [PATCH] change referrer policy from same-origin to strict-origin

---
 nextcloud/rootfs/nginx/sites-enabled/nginx.conf | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/nextcloud/rootfs/nginx/sites-enabled/nginx.conf b/nextcloud/rootfs/nginx/sites-enabled/nginx.conf
index b9744c8..24947e5 100644
--- a/nextcloud/rootfs/nginx/sites-enabled/nginx.conf
+++ b/nextcloud/rootfs/nginx/sites-enabled/nginx.conf
@@ -1,16 +1,16 @@
 server {
         listen 8888;
         root /nextcloud;
-        
+
         fastcgi_buffers 64 4K;
-        
+
         add_header Strict-Transport-Security "max-age=15768000; includeSubDomains; preload";
         add_header X-Content-Type-Options nosniff;
         add_header X-XSS-Protection "1; mode=block";
         add_header X-Robots-Tag none;
         add_header X-Download-Options noopen;
         add_header X-Permitted-Cross-Domain-Policies none;
-        add_header Referrer-Policy "same-origin";
+        add_header Referrer-Policy "strict-origin";
 
         location = /robots.txt {
             allow all;