Add X-Forwarded-Proto header

Guess protocol from redirect-url scheme if present, or from cookie-secure flag value. closes bitly#171
joejulian · Mar 3, 2018 · 6c49db8 · 6c49db8
1 parent c9292ff
commit 6c49db8
Showing 1 changed file with 8 additions and 0 deletions.
diff --git a/oauthproxy.go b/oauthproxy.go
@@ -707,6 +707,14 @@ func (p *OAuthProxy) Authenticate(rw http.ResponseWriter, req *http.Request) int
 	} else {
 		rw.Header().Set("GAP-Auth", session.Email)
 	}
+	switch {
+	case p.redirectURL.Scheme != "":
+		req.Header.Set("X-Forwarded-Proto", p.redirectURL.Scheme)
+	case p.CookieSecure:
+		req.Header.Set("X-Forwarded-Proto", "https")
+	default:
+		req.Header.Set("X-Forwarded-Proto", "http")
+	}
 	return http.StatusAccepted
 }