From a925393522835ccaad544b6dfa53aeb4e3f04446 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?M=C3=A9sz=C3=A1ros=20Mih=C3=A1ly?= <misi@majd.eu>
Date: Sat, 28 Mar 2020 21:43:25 +0100
Subject: [PATCH] Add trustProxy option to server config

---
 server/config/config.example.js | 6 ++++++
 server/server.js                | 4 ++++
 2 files changed, 10 insertions(+)

diff --git a/server/config/config.example.js b/server/config/config.example.js
index 740a9ae..eef6271 100644
--- a/server/config/config.example.js
+++ b/server/config/config.example.js
@@ -50,6 +50,12 @@ module.exports =
 	// listeningRedirectPort disabled
 	// use case: loadbalancer backend
 	httpOnly              : false,
+	// WebServer/Express trust proxy config for httpOnly mode
+	// You can find more info:
+	//  - https://expressjs.com/en/guide/behind-proxies.html
+	//  - https://www.npmjs.com/package/proxy-addr
+	// use case: loadbalancer backend
+    trustProxy           : '',
 	// If this is set to true, only signed-in users will be able
 	// to join a room directly. Non-signed-in users (guests) will
 	// always be put in the lobby regardless of room lock status.
diff --git a/server/server.js b/server/server.js
index 6823873..223fc13 100755
--- a/server/server.js
+++ b/server/server.js
@@ -99,6 +99,10 @@ const session = expressSession({
 	}
 });
 
+if (config.trustProxy) {
+	app.set('trust proxy', config.trustProxy);
+}
+
 app.use(session);
 
 passport.serializeUser((user, done) =>