From e343061cf4b15847f8ce308837e2a9bf4b71cd69 Mon Sep 17 00:00:00 2001
From: Michael Kroes <michael@kroes.email>
Date: Sun, 13 Mar 2016 18:23:10 +0100
Subject: [PATCH] Prevent clickjacking of management interface

---
 conf/nginx-primaryonly.conf | 1 +
 1 file changed, 1 insertion(+)

diff --git a/conf/nginx-primaryonly.conf b/conf/nginx-primaryonly.conf
index 2fb9972e..9f040c0d 100644
--- a/conf/nginx-primaryonly.conf
+++ b/conf/nginx-primaryonly.conf
@@ -6,6 +6,7 @@
 	location /admin/ {
 		proxy_pass http://127.0.0.1:10222/;
 		proxy_set_header X-Forwarded-For $remote_addr;
+		add_header X-Frame-Options "SAMEORIGIN";
 	}
 
 	# ownCloud configuration.