From e43abf2a968b07253779aaaed000f11c94331dd9 Mon Sep 17 00:00:00 2001
From: Azertooth <wublide@gmail.com>
Date: Tue, 27 Apr 2021 18:15:16 +0200
Subject: [PATCH] Fixes #3531 - Nginx SSL configuration improvement to prevent
 "CSRF token verification failed!" error

---
 contrib/nginx/zammad_ssl.conf | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/contrib/nginx/zammad_ssl.conf b/contrib/nginx/zammad_ssl.conf
index ee4278caf..a8d18cfd6 100644
--- a/contrib/nginx/zammad_ssl.conf
+++ b/contrib/nginx/zammad_ssl.conf
@@ -94,6 +94,7 @@ server {
     proxy_set_header Connection "Upgrade";
     proxy_set_header CLIENT_IP $remote_addr;
     proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
+    proxy_set_header X-Forwarded-Proto	$scheme;
     proxy_read_timeout 86400;
     proxy_pass http://zammad-websocket;
   }
@@ -102,6 +103,7 @@ server {
     proxy_set_header Host $http_host;
     proxy_set_header CLIENT_IP $remote_addr;
     proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
+    proxy_set_header X-Forwarded-Proto	$scheme;
 
     # change this line in an SSO setup
     proxy_set_header X-Forwarded-User "";