From 519872d89835943eaca794f10774f462e204053f Mon Sep 17 00:00:00 2001
From: Johannes Zellner <johannes@cloudron.io>
Date: Sat, 1 Feb 2025 23:11:38 +0100
Subject: [PATCH] Support trust proxy

Sometimes required to set the correct protocol
 https://expressjs.com/en/4x/api.html#req.protocol
---
 app/src/Server.js          | 2 ++
 app/src/config.template.js | 1 +
 2 files changed, 3 insertions(+)

diff --git a/app/src/Server.js b/app/src/Server.js
index bf76c7b2..bcbb11ae 100644
--- a/app/src/Server.js
+++ b/app/src/Server.js
@@ -138,6 +138,7 @@ const io = socketIo(server, {
 });
 
 const host = config.server.hostUrl || `http://localhost:${config.server.listen.port}`;
+const trustProxy = !!config.server.trustProxy;
 
 const jwtCfg = {
     JWT_KEY: (config.jwt && config.jwt.key) || 'mirotalksfu_jwt_secret',
@@ -357,6 +358,7 @@ function OIDCAuth(req, res, next) {
 
 function startServer() {
     // Start the app
+    app.set('trust proxy', trustProxy);
     app.use(helmet.xssFilter()); // Enable XSS protection
     app.use(helmet.noSniff()); // Enable content type sniffing prevention
     app.use(express.static(dir.public));
diff --git a/app/src/config.template.js b/app/src/config.template.js
index fe03ed1f..0bce2efe 100644
--- a/app/src/config.template.js
+++ b/app/src/config.template.js
@@ -82,6 +82,7 @@ module.exports = {
             ip: '0.0.0.0',
             port: process.env.PORT || 3010,
         },
+        trustProxy: false,
         ssl: {
             // ssl/README.md
             cert: '../ssl/cert.pem',