theo/agence66-seafile
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Fix CSRF verification by improving Traefik proxy headers

Browse Source 
Remove empty X-Forwarded-For header and add X-Scheme header to properly handle HTTPS requests. Add X-Frame-Options for improved security.

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>
This commit is contained in:
BeauTroll
2026-01-06 11:48:11 +01:00
parent 6b27ef3343
commit d6ec64bffd
1 changed files with 2 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
docker-compose.yml
View File

@@ -44,8 +44,9 @@ services:
- "traefik.http.routers.seafile.middlewares=seafile-headers" - "traefik.http.routers.seafile.middlewares=seafile-headers"
- "traefik.http.services.seafile.loadbalancer.server.port=80" - "traefik.http.services.seafile.loadbalancer.server.port=80"
- "traefik.http.middlewares.seafile-headers.headers.customrequestheaders.X-Forwarded-Proto=https" - "traefik.http.middlewares.seafile-headers.headers.customrequestheaders.X-Forwarded-Proto=https"
- "traefik.http.middlewares.seafile-headers.headers.customrequestheaders.X-Forwarded-For="
- "traefik.http.middlewares.seafile-headers.headers.customrequestheaders.X-Forwarded-Host=${SEAFILE_SERVER_HOSTNAME}" - "traefik.http.middlewares.seafile-headers.headers.customrequestheaders.X-Forwarded-Host=${SEAFILE_SERVER_HOSTNAME}"
- "traefik.http.middlewares.seafile-headers.headers.customrequestheaders.X-Scheme=https"
- "traefik.http.middlewares.seafile-headers.headers.customresponseheaders.X-Frame-Options=SAMEORIGIN"
depends_on: depends_on:
- db - db
- memcached - memcached