From 3d06af69032ce55bdd070922957a2b8cab42c656 Mon Sep 17 00:00:00 2001
From: tituspijean <titus+yunohost@pijean.ovh>
Date: Wed, 5 Jul 2023 00:41:59 +0200
Subject: [PATCH] [autopatch] Fix Host and X-Forwarded-For header spoofing

---
 conf/nginx.conf | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/conf/nginx.conf b/conf/nginx.conf
index 695b7a0..fb44523 100644
--- a/conf/nginx.conf
+++ b/conf/nginx.conf
@@ -31,7 +31,7 @@ location ~ ^/(libs|css|static|images|fonts|lang|sounds|connection_optimization|.
 location = /http-bind {
     proxy_pass http://127.0.0.1:5280/http-bind?prefix=$prefix&$args;
     proxy_set_header X-Forwarded-For $remote_addr;
-    proxy_set_header Host $http_host;
+    proxy_set_header Host $host;
 }
 
 # xmpp websockets
@@ -40,7 +40,7 @@ location = /xmpp-websocket {
     proxy_http_version 1.1;
     proxy_set_header Upgrade $http_upgrade;
     proxy_set_header Connection "upgrade";
-    proxy_set_header Host $http_host;
+    proxy_set_header Host $host;
     tcp_nodelay on;
 }