Hack at ssl redirect

2014-12-03 23:36:12 +00:00 · 2014-12-03 23:36:12 +00:00 · 1f3d692007
commit 1f3d692007
parent 8a29eb8f50
1 changed files with 2 additions and 2 deletions
--- a/app.js
+++ b/app.js
@ -34,8 +34,8 @@ app.use(express.static(path.join(__dirname, 'public')));

 // force SSL
 app.get('*', function(req,res,next) {
-  if (req.headers['x-forwarded-proto'] && req.headers['x-forwarded-proto'] != 'https') {
-    res.redirect(req.headers['host'] + req.url);
+  if (req.headers['cf-visitor'] && req.headers['cf-visitor'] != '{"scheme":"https"}') {
+    res.redirect("https://" + req.headers['host'] + req.url);
  } else {
    next();
  }