fix: allow forwarded headers

SKairinos · SKairinos · commit a70c12663f06 · 2025-06-24T15:46:25.000Z
diff --git a/codeforlife/server.py b/codeforlife/server.py
@@ -112,6 +112,7 @@ def __init__(
             "bind": "0.0.0.0:8080",
             "workers": 1 if mode == "celery" else workers,
             "worker_class": "uvicorn.workers.UvicornWorker",
+            "forwarded_allow_ips": "*",
         }
 
         if mode == "celery":
diff --git a/codeforlife/settings/django.py b/codeforlife/settings/django.py
@@ -170,6 +170,7 @@ def get_databases():
 SECURE_CONTENT_TYPE_NOSNIFF = True
 SECURE_BROWSER_XSS_FILTER = True
 SECURE_REFERRER_POLICY = "strict-origin-when-cross-origin"
+SECURE_PROXY_SSL_HEADER = ("HTTP_X_FORWARDED_PROTO", "https")
 
 # Internationalization
 # https://docs.djangoproject.com/en/5.1/topics/i18n/

Original file line number	Diff line number	Diff line change
`@@ -112,6 +112,7 @@ def __init__(`
`112`	`112`	`"bind": "0.0.0.0:8080",`
`113`	`113`	`"workers": 1 if mode == "celery" else workers,`
`114`	`114`	`"worker_class": "uvicorn.workers.UvicornWorker",`
	`115`	`+ "forwarded_allow_ips": "*",`
`115`	`116`	`}`
`116`	`117`
`117`	`118`	`if mode == "celery":`