diff --git a/core/js/config.php b/core/js/config.php
index 7f2d0517460..921f35b59db 100644
--- a/core/js/config.php
+++ b/core/js/config.php
@@ -32,6 +32,10 @@
  *
  */
 
+if(!\OC::$server->getRequest()->passesStrictCookieCheck()) {
+	die();
+}
+
 // Set the content type to Javascript
 header("Content-type: text/javascript");