Merge pull request #124 from Chewie/example_xframe_options

Example: remove X-Frame-Options from nginx.conf
This commit is contained in:
Tilo Spannagel 2017-07-06 13:30:56 +02:00 committed by GitHub
commit e43855e3e1

View File

@ -17,7 +17,6 @@ http {
# Add headers to serve security related headers # Add headers to serve security related headers
add_header Strict-Transport-Security "max-age=15768000; includeSubDomains; preload;"; add_header Strict-Transport-Security "max-age=15768000; includeSubDomains; preload;";
add_header X-Content-Type-Options nosniff; add_header X-Content-Type-Options nosniff;
add_header X-Frame-Options "SAMEORIGIN";
add_header X-XSS-Protection "1; mode=block"; add_header X-XSS-Protection "1; mode=block";
add_header X-Robots-Tag none; add_header X-Robots-Tag none;
add_header X-Download-Options noopen; add_header X-Download-Options noopen;