mod_websocket: Inherit security status from http request

Allows requests considered secure becasue of a proxy header to carry over to the client session. mod_bosh does this too.
2025-04-03 21:27:38 +03:00 · 2021-02-18 10:05:30 +01:00 · 2021-02-18 10:05:30 +01:00 · 231e87ab05
commit 231e87ab05
parent 362c228c47
1 changed files with 1 additions and 1 deletions
--- a/plugins/mod_websocket.lua
+++ b/plugins/mod_websocket.lua
@ -266,7 +266,7 @@ function handle_request(event)
 	-- See mod_http and #540
 	session.ip = request.ip;

-	session.secure = consider_websocket_secure or session.secure;
+	session.secure = consider_websocket_secure or request.secure or session.secure;
 	session.websocket_request = request;

 	session.open_stream = session_open_stream;