Added documented options to .htaccess to support detecting forwarded HTTPS (#1063)

support.
2025-02-20 19:56:53 +01:00 · 2016-09-23 14:36:40 -06:00 · 2016-09-23 14:36:40 -06:00 · 24ea511ad1
commit 24ea511ad1
parent 18463b958f
1 changed files with 10 additions and 0 deletions
--- a/.htaccess
+++ b/.htaccess
@ -13,6 +13,16 @@ RewriteEngine On

 ## End - RewriteBase

+## Begin - X-Forwarded-Proto
+# In some hosted or load balanced environments, SSL negotiation happens upstream.
+# In order for Grav to recognize the connection as secure, you need to uncomment
+# the following lines.
+#
+# RewriteCond %{HTTP:X-Forwarded-Proto} https
+# RewriteRule .* - [E=HTTPS:on]
+#
+## End - X-Forwarded-Proto
+
 ## Begin - Exploits
 # If you experience problems on your site block out the operations listed below
 # This attempts to block the most common type of exploit `attempts` to Grav