From b00f532aef3a0187387bacfdfde3475677914235 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?E=CC=81ric=20Gaspar?=
 <46165813+ericgaspar@users.noreply.github.com>
Date: Wed, 19 Jun 2024 09:50:50 +0200
Subject: [PATCH] Update nginx.conf

---
 conf/nginx.conf | 10 ++++++----
 1 file changed, 6 insertions(+), 4 deletions(-)

diff --git a/conf/nginx.conf b/conf/nginx.conf
index 2904a6a..cad7885 100644
--- a/conf/nginx.conf
+++ b/conf/nginx.conf
@@ -5,11 +5,13 @@ location __PATH__/ {
     
     index index.html;
 
-    more_set_headers "X-Frame-Options: SAMEORIGIN";
-    more_clear_headers "X-Content-Type-Options";
-    more_set_headers "X-XSS-Protection: '1; mode=block'";
-    more_set_headers "Content-Security-Policy: frame-ancestors 'self'";
+    more_set_headers "Referrer-Policy: 'strict-origin' always";
+    more_set_headers "X-Content-Type-Options: 'nosniff' always";
+    more_set_headers "X-Frame-Options: 'SAMEORIGIN' always";
 
     # Include SSOWAT user panel.
     include conf.d/yunohost_panel.conf.inc;
 }
+
+
+