X-Forwarded-Proto Headers

edjiang · June 1, 2016, 9:54pm

I’m using HyperDev to display example projects for Stormpath, and one of the examples sets a redirect url based on the protocol.

The load balancer HyperDev is using doesn’t seem to set the X-Forwarded-Proto header, so my app always thinks it’s on http, while I’m accessing it via https.

I’d love to see HyperDe set the header properly so my app can use it!

nathan · June 2, 2016, 10:08pm

Good idea! I’ve put this on our backlog… stay tuned

edjiang · June 2, 2016, 10:46pm

Awesome, thanks Nathan!

adambox · June 22, 2018, 3:12pm

looks like x-forwarded-proto is being used now (and I can’t spoof it, so it’s a safe way to determine if the client is connecting with https)

function requestIsSecure(req) { return req.headers["x-forwarded-proto"].startsWith("https"); }

Topic		Replies	Views
[Solved] Auto redirect http -> https Glitch Help	6	2917	October 14, 2019
X-forwarded-proto contains multiple protocols Glitch Feedback	2	551	February 21, 2020
Setting up p5.js Glitch Help	3	1185	June 8, 2016
Hyperdev replaces `//` with `/` in requests to my app Glitch Help	2	783	August 5, 2016
Broken URL path encoding? Glitch Feedback	3	1186	October 5, 2016

X-Forwarded-Proto Headers

Related Topics