Add recommended headers to owncloud vhost.

roles/owncloud/templates/certs.j2

@@ -5,7 +5,7 @@
   user: root
   group: root
   perm: '400'
-  format: crt
+  format: crt,ca
   notify: 'service nginx restart'
 - path: /etc/nginx/ssl/{{ owncloud_domain }}.key
   user: root

roles/owncloud/templates/vhost.j2

@@ -23,6 +23,13 @@ server {
 	ssl_certificate_key /etc/nginx/ssl/{{ owncloud_domain }}.key;
 	ssl_certificate /etc/nginx/ssl/{{ owncloud_domain }}.crt;
 
+	# Add headers to serve security related headers
+	#add_header Strict-Transport-Security "max-age=15768000; includeSubDomains; preload;";
+	add_header X-Content-Type-Options nosniff;
+	add_header X-Frame-Options "SAMEORIGIN";
+	add_header X-XSS-Protection "1; mode=block";
+	add_header X-Robots-Tag none;
+
 	root /var/www/owncloud/;
 
 	# set max upload size