[fix] replace X-Scheme by X-Forwarded-Proto header (#5107)

The HTTP X-Forwarded-Proto (XFP) request header is a *de-facto* standard header
for identifying the protocol (HTTP or HTTPS) that a client used to connect to a
proxy or load balancer.[1]

The ``X-Scheme`` header was added 10 years ago, why ``X-Scheme`` was used back
then and not ``X-Forwarded-Proto``, nobody knows today / possibly because
``X-Forwarded-Proto`` wasn't a *de-facto* standard back then.

[1] https://developer.mozilla.org/en-US/docs/Web/HTTP/Reference/Headers/X-Forwarded-Proto
[2] https://github.com/searx/searx/commit/6ef7c3276

1 files changed, 2 insertions, 2 deletions

diff --git a/utils/templates/etc/nginx/default.apps-available/searxng.conf:socket b/utils/templates/etc/nginx/default.apps-available/searxng.conf:socket
index 9ff5658c4..0556bae66 100644
--- a/utils/templates/etc/nginx/default.apps-available/searxng.conf:socket
+++ b/utils/templates/etc/nginx/default.apps-available/searxng.conf:socket
@@ -8,10 +8,10 @@ location ${SEARXNG_URL_PATH} {
     uwsgi_param    HTTP_CONNECTION       \$http_connection;
 
     # see flaskfix.py
-    uwsgi_param    HTTP_X_SCHEME         \$scheme;
+    uwsgi_param    HTTP_X_FORWARDED_PROTO  \$scheme;
     uwsgi_param    HTTP_X_SCRIPT_NAME    ${SEARXNG_URL_PATH};
 
-    # see limiter.py
+    # see botdetection/trusted_proxies.py
     uwsgi_param    HTTP_X_REAL_IP        \$remote_addr;
     uwsgi_param    HTTP_X_FORWARDED_FOR  \$proxy_add_x_forwarded_for;
 }