File tree Expand file tree Collapse file tree 1 file changed +6
-5
lines changed
src/main/java/io/fusionauth/http/server Expand file tree Collapse file tree 1 file changed +6
-5
lines changed Original file line number Diff line number Diff line change @@ -785,11 +785,6 @@ private int getBaseURLServerPort() {
785785 return serverPort ;
786786 }
787787
788- // If we don't have an X-Forwarded-Proto header, or it is not https, nothing to do here.
789- if (!"https" .equals (getHeader (Headers .XForwardedProto ))) {
790- return serverPort ;
791- }
792-
793788 // If we don't have a host header, nothing to do here.
794789 String xHost = getHeader (Headers .XForwardedHost );
795790 if (xHost == null ) {
@@ -808,6 +803,12 @@ private int getBaseURLServerPort() {
808803 return serverPort ;
809804 }
810805
806+ // If we don't have an X-Forwarded-Proto header, or it is not https, nothing to do here.
807+ // - We must have the X-Forwarded-Proto: https in order to assume 443
808+ if (!"https" .equals (getHeader (Headers .XForwardedProto ))) {
809+ return serverPort ;
810+ }
811+
811812 // If we made this far, we have met all conditions for assuming port 443.
812813 // - We are missing the X-Forwarded-Port header, we have an X-Forwarded-Proto header of https, and we have an X-Forwarded-Host
813814 // header value that has not defined a port, and it has defined a port.
You can’t perform that action at this time.
0 commit comments