5a3a51e1be
This is a workaround for running an application behind two layers of reverse proxies with the outer one terminating ssl. In this case the inner proxy receives requests with plain http and sets X-Forwarded-Proto, X-Forwarded-Ssl and X-Url-Scheme to "http", although the original requests used https. This breaks some applications. Ideally we would use a mechanism similar to real_ip_from and just forward the proto/ssl/scheme headers if the request came from a trusted proxy, but this workaround is much simpler. |
||
|---|---|---|
| .. | ||
| php-fpm | ||
| dns.conf.j2 | ||
| maps.conf.j2 | ||
| proxy.conf.j2 | ||
| ssl_files.conf.j2 | ||
| stream.conf.j2 | ||
| upstreams.conf.j2 | ||
| vhost.conf.j2 | ||