From ec3b5df112a5d1a0fb2a4c51d4f7b13d2d0deab2 Mon Sep 17 00:00:00 2001
From: chandi <git@chandi.it>
Date: Mon, 13 Apr 2020 14:51:45 +0200
Subject: [PATCH] fix for greenlight CSRF error
 ActionController::InvalidAuthenticityToken, due to wrong requesting url
 protocol

https://github.com/bigbluebutton/greenlight/issues/997
---
 mod/nginx/bbb/greenlight.nginx | 2 ++
 sample.env                     | 3 ---
 2 files changed, 2 insertions(+), 3 deletions(-)

diff --git a/mod/nginx/bbb/greenlight.nginx b/mod/nginx/bbb/greenlight.nginx
index 4e648d1..8ed654b 100644
--- a/mod/nginx/bbb/greenlight.nginx
+++ b/mod/nginx/bbb/greenlight.nginx
@@ -9,6 +9,7 @@ location /b {
   proxy_set_header    Host              $host;
   proxy_set_header    X-Forwarded-For   $proxy_add_x_forwarded_for;
   proxy_set_header    X-Forwarded-Proto $scheme;
+  proxy_set_header    X-Forwarded-Ssl on;
   proxy_http_version  1.1;
 }
 
@@ -17,6 +18,7 @@ location /b/cable {
   proxy_set_header    Host              $host;
   proxy_set_header    X-Forwarded-For   $proxy_add_x_forwarded_for;
   proxy_set_header    X-Forwarded-Proto $scheme;
+  proxy_set_header    X-Forwarded-Ssl on;
   proxy_set_header    Upgrade           $http_upgrade;
   proxy_set_header    Connection        "Upgrade";
   proxy_http_version  1.1;
diff --git a/sample.env b/sample.env
index 7e208e6..f5836f6 100644
--- a/sample.env
+++ b/sample.env
@@ -175,9 +175,6 @@ REPORT_ISSUE_URL=https://github.com/bigbluebutton/greenlight/issues/new
 # RAILS_LOG_REMOTE_PORT=9999
 # RAILS_LOG_REMOTE_TAG=greenlight
 #
-# Force SSL
-#
-# ENABLE_SSL=true
 
 # Specify the default registration to be used by Greenlight until an administrator sets the
 # registration method