From 9d4e3fc59cdb2e2cf4a704f69d960e1bda4cee81 Mon Sep 17 00:00:00 2001
From: BlockListed <44610569+BlockListed@users.noreply.github.com>
Date: Wed, 10 May 2023 21:33:29 +0200
Subject: [PATCH 1/2] improve documentation for nextcloud security

The default configuration does not pass security checks.
A change to ssl.conf is required for secure operation.
This behaviour can be very confusing to new users.
Documenting this should help make it easier for
new nextcloud users to have a secure experience.
---
 nextcloud.subdomain.conf.sample | 1 +
 nextcloud.subfolder.conf.sample | 1 +
 2 files changed, 2 insertions(+)

diff --git a/nextcloud.subdomain.conf.sample b/nextcloud.subdomain.conf.sample
index e63d077..c3e2ee1 100644
--- a/nextcloud.subdomain.conf.sample
+++ b/nextcloud.subdomain.conf.sample
@@ -32,6 +32,7 @@ server {
         set $upstream_proto https;
         proxy_pass $upstream_proto://$upstream_app:$upstream_port;
 
+        # Uncomment X-Frame-Options directive in ssl.conf to pass security checks.
         proxy_hide_header X-Frame-Options;
         proxy_max_temp_file_size 2048m;
     }
diff --git a/nextcloud.subfolder.conf.sample b/nextcloud.subfolder.conf.sample
index 11bbb75..8708b4e 100644
--- a/nextcloud.subfolder.conf.sample
+++ b/nextcloud.subfolder.conf.sample
@@ -34,6 +34,7 @@ location ^~ /nextcloud/ {
     proxy_pass $upstream_proto://$upstream_app:$upstream_port;
 
     rewrite /nextcloud(.*) $1 break;
+    # Uncomment X-Frame-Options directive in ssl.conf to pass security checks.
     proxy_hide_header X-Frame-Options;
     proxy_max_temp_file_size 2048m;
     proxy_set_header Range $http_range;

From 28f85dc19d5eaf0b5abd59fba834813343a2472c Mon Sep 17 00:00:00 2001
From: BlockListed <44610569+BlockListed@users.noreply.github.com>
Date: Wed, 10 May 2023 21:37:56 +0200
Subject: [PATCH 2/2] update date for nextcloud confs

---
 nextcloud.subdomain.conf.sample | 2 +-
 nextcloud.subfolder.conf.sample | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/nextcloud.subdomain.conf.sample b/nextcloud.subdomain.conf.sample
index c3e2ee1..550b32c 100644
--- a/nextcloud.subdomain.conf.sample
+++ b/nextcloud.subdomain.conf.sample
@@ -1,4 +1,4 @@
-## Version 2023/02/05
+## Version 2023/05/10
 # make sure that your nextcloud container is named nextcloud
 # make sure that your dns has a cname set for nextcloud
 # assuming this container is called "swag", edit your nextcloud container's config
diff --git a/nextcloud.subfolder.conf.sample b/nextcloud.subfolder.conf.sample
index 8708b4e..42d2265 100644
--- a/nextcloud.subfolder.conf.sample
+++ b/nextcloud.subfolder.conf.sample
@@ -1,4 +1,4 @@
-## Version 2023/02/05
+## Version 2023/05/10
 # make sure that your nextcloud container is named nextcloud
 # make sure that nextcloud is set to work with the base url /nextcloud/
 # Assuming this container is called "swag", edit your nextcloud container's config