From bfd7fafa9312e4801c3c34e3f9437d90841144e4 Mon Sep 17 00:00:00 2001
From: realies <5107843+realies@users.noreply.github.com>
Date: Tue, 27 Feb 2024 22:19:07 +0000
Subject: [PATCH] use client provided header to determine access protocol

---
 docker/rootfs/etc/nginx/conf.d/include/force-ssl.conf | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docker/rootfs/etc/nginx/conf.d/include/force-ssl.conf b/docker/rootfs/etc/nginx/conf.d/include/force-ssl.conf
index aa52f335..6e88c71a 100644
--- a/docker/rootfs/etc/nginx/conf.d/include/force-ssl.conf
+++ b/docker/rootfs/etc/nginx/conf.d/include/force-ssl.conf
@@ -1,5 +1,5 @@
 set $test "";
-if ($scheme = "http") {
+if ($http_x_forwarded_proto = "http") {
 	set $test "H";
 }
 if ($request_uri = /.well-known/acme-challenge/test-challenge) {