What does it actually do? When it’s on, I get a redirecting error when trying to connect to my nextcloud at cloud.example.com, but with it off, it seems like I can’t connect to NC using http anyway? Am I misunderstanding what it does?

Thanks!

  • redcalcium@lemmy.institute
    link
    fedilink
    English
    arrow-up
    0
    ·
    1 year ago

    Usually it’s due to the webapp not knowing that the request is actually already served under https by the reverse proxy, it think the request is still served over http so it issues a redirect to https, which leads to a redirect loop.

      • redcalcium@lemmy.institute
        link
        fedilink
        English
        arrow-up
        1
        ·
        1 year ago

        I’m not sure what happened in your setup, but here is how https handling should works:

        • users request https://example.com to your reverse proxy
        • reverse proxy pass the requests to upstream server, but using http instead. It also add HTTP_X_FORWARDED_PROTO header to let the upstream server know that even though the request is over http, the end user actually served over https so it should assume the connection as https
        • the upstream server return a response, it take into accounts that the request is already done via https (e.g. generating links with https:// prefix, etc).

        I think this chain is broken somewhere in your setup and cause nextcloud to not receive the HTTP_X_FORWARDED_PROTO header from nginx proxy.