yoinkkk/ExcaliDash
2
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

fix HTTPS reuqirement when frontend URL is nto HTTPS

Browse Source
This commit is contained in:
Zimeng Xiong
2026-02-07 10:30:49 -08:00
parent 8161a563f0
commit 173c050f58
1 changed files with 6 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files
backend/src/index.ts
+6 -2
View File
@@ -259,8 +259,12 @@ app.use((req, res, next) => {
next(); next();
}); });
// HTTPS enforcement in production // HTTPS enforcement in production only when configured frontend origins use HTTPS.
if (config.nodeEnv === "production") { const shouldEnforceHttps =
config.nodeEnv === "production" &&
allowedOrigins.some((origin) => origin.toLowerCase().startsWith("https://"));
if (shouldEnforceHttps) {
app.use((req, res, next) => { app.use((req, res, next) => {
if (req.header("x-forwarded-proto") !== "https") { if (req.header("x-forwarded-proto") !== "https") {
res.redirect(`https://${req.header("host")}${req.url}`); res.redirect(`https://${req.header("host")}${req.url}`);