From b45ec76a0c91627bdc09852c081c32e6f829da2a Mon Sep 17 00:00:00 2001
From: Artiume <siderite@gmail.com>
Date: Fri, 14 Jun 2019 19:30:53 -0400
Subject: [PATCH] updated headers

adding Headings, not sure if syntax is correct for custom frame options.
---
 ymlfiles/traefik.yml | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/ymlfiles/traefik.yml b/ymlfiles/traefik.yml
index c8e1aa2..3879a55 100755
--- a/ymlfiles/traefik.yml
+++ b/ymlfiles/traefik.yml
@@ -42,6 +42,8 @@ services:
       - "traefik.frontend.headers.STSIncludeSubdomains=true"
       - "traefik.frontend.headers.STSPreload=true"
       - "traefik.frontend.headers.frameDeny=true"
+      - "traefik.frontend.headers.customFrameOptionsValue='allow-from https:${DOMAINNAME}'"
+      - "traefik.frontend.passHostHeader=true"
       - "traefik.frontend.auth.forward.address=http://oauth:4181"
 
 ## Google OAuth - Limits access to only your Google account
@@ -82,6 +84,8 @@ services:
       - "traefik.frontend.headers.STSIncludeSubdomains=true"
       - "traefik.frontend.headers.STSPreload=true"
       - "traefik.frontend.headers.frameDeny=true"
+      - "traefik.frontend.headers.customFrameOptionsValue='allow-from https:${DOMAINNAME}'"
+      - "traefik.frontend.passHostHeader=true"
       - "traefik.frontend.auth.forward.address=http://oauth:4181" # add this to any containers you want to protect (if possible, sometimes mobile apps dont work)
 
 networks: