From 01b9babab50e284f0db9fca92a5f291821a10bf3 Mon Sep 17 00:00:00 2001
From: samsepi0l <contact@simpleprivacy.fr>
Date: Wed, 12 Apr 2023 13:22:54 +0200
Subject: [PATCH] Add X-Frame-Options (#2)

* Add X-Frame-Options

Signed-off-by: samsepi0l <contact@simpleprivacy.fr>
Signed-off-by: Tommy <contact@tommytran.io>
Co-authored-by: Tommy <contact@tommytran.io>
---
 swag/nginx/ssl.conf | 1 +
 1 file changed, 1 insertion(+)

diff --git a/swag/nginx/ssl.conf b/swag/nginx/ssl.conf
index 57d52ea..db6efef 100644
--- a/swag/nginx/ssl.conf
+++ b/swag/nginx/ssl.conf
@@ -36,6 +36,7 @@ add_header Referrer-Policy "same-origin" always;
 add_header X-Content-Type-Options "nosniff" always;
 #add_header X-UA-Compatible "IE=Edge" always;
 add_header X-XSS-Protection "0" always;
+add_header X-Frame-Options "DENY" always;
 add_header Cross-Origin-Resource-Policy same-origin;
 add_header Cross-Origin-Embedder-Policy require-corp;
 add_header Cross-Origin-Opener-Policy same-origin;