diff --git a/server/config/config.example.js b/server/config/config.example.js
index 740a9ae..eef6271 100644
--- a/server/config/config.example.js
+++ b/server/config/config.example.js
@@ -50,6 +50,12 @@ module.exports =
 	// listeningRedirectPort disabled
 	// use case: loadbalancer backend
 	httpOnly              : false,
+	// WebServer/Express trust proxy config for httpOnly mode
+	// You can find more info:
+	//  - https://expressjs.com/en/guide/behind-proxies.html
+	//  - https://www.npmjs.com/package/proxy-addr
+	// use case: loadbalancer backend
+    trustProxy           : '',
 	// If this is set to true, only signed-in users will be able
 	// to join a room directly. Non-signed-in users (guests) will
 	// always be put in the lobby regardless of room lock status.
diff --git a/server/server.js b/server/server.js
index 6823873..223fc13 100755
--- a/server/server.js
+++ b/server/server.js
@@ -99,6 +99,10 @@ const session = expressSession({
 	}
 });
 
+if (config.trustProxy) {
+	app.set('trust proxy', config.trustProxy);
+}
+
 app.use(session);
 
 passport.serializeUser((user, done) =>