[PR #643] [CLOSED] Add TLS Termination to Readme.md #1001

New issue

Closed

opened 2026-02-26 00:30:32 +03:00 by kerem · 0 comments

kerem commented

2026-02-26 00:30:32 +03:00

Owner

📋 Pull Request Information

Original PR: https://github.com/healthchecks/healthchecks/pull/643
Author: @rishabhnama
Created: 4/28/2022
Status: ❌ Closed

Base: py2 ← Head: master

📝 Commits (10+)

289afd5 Fix grammar issue in docs
8109529 Render docs
3901a28 Replace str(exc) with exc.message to make CodeQL happy
484c0be Fix email template to use SITE_LOGO_URL (with img/logo.png fallback)
642d436 Add absolute_site_logo_url template tag
f7dd16a Remove site_root from template context, it's never used
1247cc4 Fix a crash during login when user's profile does not exist
a2fe565 Improve copy in the "Change Schedule" dialog
eb25cde Simplify jumbotron CSS
c2ee822 Update the "experimental" note

📊 Changes

932 files changed (+44346 additions, -13914 deletions)

View changed files

➕ .github/FUNDING.yml (+1 -0)
➕ .github/workflows/codeql-analysis.yml (+31 -0)
➕ .github/workflows/django.yml (+56 -0)
➕ .github/workflows/publish_docker_image.yml (+49 -0)
📝 .gitignore (+1 -0)
➖ .travis.yml (+0 -18)
➕ CHANGELOG.md (+500 -0)
➕ CONTRIBUTING.md (+23 -0)
📝 LICENSE (+1 -1)
📝 README.md (+319 -142)
➕ docker/.env.example (+73 -0)
➕ docker/Dockerfile (+38 -0)
➕ docker/README.md (+50 -0)
➕ docker/docker-compose.yml (+24 -0)
➕ docker/uwsgi.ini (+17 -0)
📝 hc/accounts/admin.py (+208 -66)
📝 hc/accounts/backends.py (+33 -4)
➕ hc/accounts/decorators.py (+51 -0)
📝 hc/accounts/forms.py (+132 -9)
➕ hc/accounts/management/commands/createsuperuser.py (+42 -0)

...and 80 more files

📄 Description

TLS Termination
If you plan to expose your Healthchecks instance to the public internet, make sure you put a TLS-terminating reverse proxy in front of it.

Important: This Dockerfile uses UWSGI, which relies on the X-Forwarded-Proto header to determine if a request is secure or not. Make sure your TLS-terminating reverse proxy:

Discards the X-Forwarded-Proto header sent by the end user.
Sets the X-Forwarded-Proto header value to match the protocol of the original request ("http" or "https").

For example, in NGINX you can use the $scheme variable like so:

proxy_set_header X-Forwarded-Proto $scheme;

_{🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.}

## 📋 Pull Request Information **Original PR:** https://github.com/healthchecks/healthchecks/pull/643 **Author:** [@rishabhnama](https://github.com/rishabhnama) **Created:** 4/28/2022 **Status:** ❌ Closed **Base:** `py2` ← **Head:** `master` --- ### 📝 Commits (10+) - [`289afd5`](https://github.com/healthchecks/healthchecks/commit/289afd568327634cc4d88d03322403f6b471cb62) Fix grammar issue in docs - [`8109529`](https://github.com/healthchecks/healthchecks/commit/81095293291ae7c40c097c2af746d5886ded7e20) Render docs - [`3901a28`](https://github.com/healthchecks/healthchecks/commit/3901a2825b6ff41e425b5691b3c33c1f99a45713) Replace str(exc) with exc.message to make CodeQL happy - [`484c0be`](https://github.com/healthchecks/healthchecks/commit/484c0befbc1ffeae03f994dbb3567cf42c197644) Fix email template to use SITE_LOGO_URL (with img/logo.png fallback) - [`642d436`](https://github.com/healthchecks/healthchecks/commit/642d436ae94d6f2e1137d52802f75ddc56972789) Add absolute_site_logo_url template tag - [`f7dd16a`](https://github.com/healthchecks/healthchecks/commit/f7dd16abcab5d5e0134083267f21672de8e3d5e1) Remove site_root from template context, it's never used - [`1247cc4`](https://github.com/healthchecks/healthchecks/commit/1247cc4ea7f8dfdea2aab6725ed8cdaa70f842a9) Fix a crash during login when user's profile does not exist - [`a2fe565`](https://github.com/healthchecks/healthchecks/commit/a2fe5653c0acc7502d6a534ef972827e8cf30786) Improve copy in the "Change Schedule" dialog - [`eb25cde`](https://github.com/healthchecks/healthchecks/commit/eb25cde241d1cea46b9a1e839ea0f24bc8fb2bf1) Simplify jumbotron CSS - [`c2ee822`](https://github.com/healthchecks/healthchecks/commit/c2ee8222e463c43d90b54c8d0e2e91188b7c4624) Update the "experimental" note ### 📊 Changes **932 files changed** (+44346 additions, -13914 deletions) <details> <summary>View changed files</summary> ➕ `.github/FUNDING.yml` (+1 -0) ➕ `.github/workflows/codeql-analysis.yml` (+31 -0) ➕ `.github/workflows/django.yml` (+56 -0) ➕ `.github/workflows/publish_docker_image.yml` (+49 -0) 📝 `.gitignore` (+1 -0) ➖ `.travis.yml` (+0 -18) ➕ `CHANGELOG.md` (+500 -0) ➕ `CONTRIBUTING.md` (+23 -0) 📝 `LICENSE` (+1 -1) 📝 `README.md` (+319 -142) ➕ `docker/.env.example` (+73 -0) ➕ `docker/Dockerfile` (+38 -0) ➕ `docker/README.md` (+50 -0) ➕ `docker/docker-compose.yml` (+24 -0) ➕ `docker/uwsgi.ini` (+17 -0) 📝 `hc/accounts/admin.py` (+208 -66) 📝 `hc/accounts/backends.py` (+33 -4) ➕ `hc/accounts/decorators.py` (+51 -0) 📝 `hc/accounts/forms.py` (+132 -9) ➕ `hc/accounts/management/commands/createsuperuser.py` (+42 -0) _...and 80 more files_ </details> ### 📄 Description **TLS Termination** If you plan to expose your Healthchecks instance to the public internet, make sure you put a TLS-terminating reverse proxy in front of it. Important: This Dockerfile uses UWSGI, which relies on the [X-Forwarded-Proto](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Forwarded-Proto) header to determine if a request is secure or not. Make sure your TLS-terminating reverse proxy: - Discards the X-Forwarded-Proto header sent by the end user. - Sets the X-Forwarded-Proto header value to match the protocol of the original request ("http" or "https"). For example, in NGINX you can use the $scheme variable like so: `proxy_set_header X-Forwarded-Proto $scheme;` --- <sub>🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.</sub>