[GH-ISSUE #681] Force HTTPS URLs #485

New issue

Closed

opened 2026-02-26 02:33:21 +03:00 by kerem · 6 comments

kerem commented 2026-02-26 02:33:21 +03:00

Owner

Copy link

Originally created by @alex-phillips on GitHub (Nov 13, 2017).
Original GitHub issue: https://github.com/koel/koel/issues/681

I'm running koel with nginx behind CloudFlare which handles HTTPS certs for my automatically, but it basically proxies the request back to my origin server over port 80. I think koel is seeing the requests coming in over HTTP and generating all URLs as HTTP instead of HTTPS which is causing issues such as not being able to log in.

Is there a way to force koel to generate all URLs as HTTPS?

Originally created by @alex-phillips on GitHub (Nov 13, 2017). Original GitHub issue: https://github.com/koel/koel/issues/681 I'm running koel with nginx behind CloudFlare which handles HTTPS certs for my automatically, but it basically proxies the request back to my origin server over port 80. I think koel is seeing the requests coming in over HTTP and generating all URLs as HTTP instead of HTTPS which is causing issues such as not being able to log in. Is there a way to force koel to generate all URLs as HTTPS?

kerem closed this issue 2026-02-26 02:33:21 +03:00

kerem commented 2026-02-26 02:33:21 +03:00

Author

Owner

Copy link

@jleonardolemos commented on GitHub (Nov 13, 2017):

@alex-phillips I think the right way is to setup https over your koel server.
Or you can try put this lines on index.php, after autoload require.

$_SERVER['SERVER_PORT'] = "443";
$_SERVER['HTTPS'] = "on";

It works for mi in another project.

<!-- gh-comment-id:343983964 --> @jleonardolemos commented on GitHub (Nov 13, 2017): @alex-phillips I think the right way is to setup https over your koel server. Or you can try put this lines on index.php, after autoload require. $_SERVER['SERVER_PORT'] = "443"; $_SERVER['HTTPS'] = "on"; It works for mi in another project.

kerem commented 2026-02-26 02:33:21 +03:00

Author

Owner

Copy link

@hmrodrigues commented on GitHub (Jan 12, 2018):

Hey,

So I also had this issue and fixed my adding $_SERVER['HTTPS'] = "on"; after autoload.

@phanan is it possible to add a entry into .env to force HTTPS? this way we don't need to change the php files

<!-- gh-comment-id:357201908 --> @hmrodrigues commented on GitHub (Jan 12, 2018): Hey, So I also had this issue and fixed my adding $_SERVER['HTTPS'] = "on"; after autoload. @phanan is it possible to add a entry into .env to force HTTPS? this way we don't need to change the php files

kerem commented 2026-02-26 02:33:21 +03:00

Author

Owner

Copy link

@mikeziri commented on GitHub (Apr 12, 2018):

that should be an .env option for sure HTTPS=false by default along with
URL::forceScheme('https'); on AppServiceProvider::boot(). with the if (env(HTTPS) === 'true')

<!-- gh-comment-id:380775040 --> @mikeziri commented on GitHub (Apr 12, 2018): that should be an .env option for sure **HTTPS=false** by default along with **URL::forceScheme('https');** on AppServiceProvider::boot(). with the **if (env(HTTPS) === 'true')**

kerem commented 2026-02-26 02:33:21 +03:00

Author

Owner

Copy link

@UmutAlihan commented on GitHub (Oct 7, 2020):

@alex-phillips I think the right way is to setup https over your koel server.
Or you can try put this lines on index.php, after autoload require.

$_SERVER['SERVER_PORT'] = "443";
$_SERVER['HTTPS'] = "on";

It works for mi in another project.

YOU ARE MY HERO!

Beacuse of your beautiful workaround, I will be able to sleep tonight 💯

<!-- gh-comment-id:705222266 --> @UmutAlihan commented on GitHub (Oct 7, 2020): > @alex-phillips I think the right way is to setup https over your koel server. > Or you can try put this lines on index.php, after autoload require. > > $_SERVER['SERVER_PORT'] = "443"; > $_SERVER['HTTPS'] = "on"; > > It works for mi in another project. YOU ARE MY HERO! Beacuse of your beautiful workaround, I will be able to sleep tonight 💯

kerem commented 2026-02-26 02:33:21 +03:00

Author

Owner

Copy link

@hulet commented on GitHub (Jul 27, 2023):

This can now be done by setting FORCE_HTTPS=true in .env.

<!-- gh-comment-id:1652959827 --> @hulet commented on GitHub (Jul 27, 2023): This can now be done by setting `FORCE_HTTPS=true` in `.env`.

kerem commented 2026-02-26 02:33:21 +03:00

Author

Owner

Copy link

@alexkutsan commented on GitHub (Jul 24, 2024):

Is there a way to support both HTTP/HTTPS?
Now I would like to use koel by HTTP in my internal tailscale network.
But when I expose it by domain name with Nginx - I would like to use https.
Right now - I can use it in the internal network by HTTPS.
But when I try to reach it by HTTPS - it fails to load because it loads many resources by HTTP, that is not allowed by the browser:

<!-- gh-comment-id:2247852120 --> @alexkutsan commented on GitHub (Jul 24, 2024): Is there a way to support both HTTP/HTTPS? Now I would like to use koel by HTTP in my internal tailscale network. But when I expose it by domain name with Nginx - I would like to use https. Right now - I can use it in the internal network by HTTPS. But when I try to reach it by HTTPS - it fails to load because it loads many resources by HTTP, that is not allowed by the browser: <img width="725" alt="изображение" src="https://github.com/user-attachments/assets/3b333264-5d90-46f5-aac2-d29aee8bc3a6">

kerem referenced this issue 2026-02-26 03:30:23 +03:00

[PR #485] [MERGED] Applied fixes from StyleCI #1265

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

master

dependabot/composer/phpunit/phpunit-12.5.22

dependabot/npm_and_yarn/dompurify-3.4.0

dependabot/npm_and_yarn/vite-plus-0.1.17

dependabot/composer/phpseclib/phpseclib-3.0.51

release

1889-duplicate-upload-detection

test/home-screen-empty-to-content

fix/exclude-songless-albums-from-recently-added

refactor/laravel-prompts

fix/wma-cover-art-exception

fix/remove-redundant-seed-step

chore/upgrade-laravel-13

chore/upgrade-vue-3.5.29

test/phase-7-components

dbg-2142

demo-fix

debug-mysql

trusthosts

seek

fix-equalizer

sentry

invite-user

remove-v6-obsolete

fix/song-list

feat/paths-filter

fix/home

fix/footer

feat/progressive

php81

dev/public-playlists

cy

feat/l7

dependabot/composer/pusher/pusher-php-server-4.1.4

dependabot/composer/laravel/framework-5.8.38

dependabot/composer/jackiedo/dotenv-editor-1.1.1

renovate/pin-dependencies

actions

api-doc

feat/recently-played

fix-tests

fix-cover-page

upload

stylejs-196

compilation

vuex

android-notif

nojquery

demo

vue2

2.0

1.1

v9.1.1

latest

v9.1.0

v9.0.0

v8.3.1

v8.3.0

v8.2.0

v8.1.0

v8.0.0

v7.15.1

v7.15.0

v7.14.0

v7.13.0

v7.12.0

v7.11.0

v7.10.4

v7.10.3

v7.10.2

v7.10.1

v7.10.0

v7.9.0

v7.8.1

v7.8.0

v7.7.1

v7.7.0

v7.6.3

v7.6.2

v7.6.1

v7.6.0

v7.5.2

v7.5.1

v7.5.0

v7.4.2

v7.4.1

v7.4.0

v7.3.1

v7.3.0

v7.2.2

v7.2.1

v7.2.0

v7.1.0

v7.0.12

v7.0.11

v7.0.10

v7.0.9

v7.0.8

v7.0.7

v7.0.6

v7.0.5

v7.0.4

v7.0.3

v7.0.2

v7.0.1

v7.0.0

v6.12.1

v6.12.0

v6.11.5

v6.11.4

v6.11.3

v6.11.2

v6.11.1

v6.11.0

v6.10.0

v6.9.0

v6.8.5

v6.8.4

v6.8.3

v6.8.2

v6.8.1

v6.8.0

v6.7.5

v6.7.4

v6.7.3

v6.7.2

v6.7.1

v6.7.0

v6.6.0

v6.5.3

v6.5.2

v6.5.1

v6.5.0

v6.4.3

v6.4.2

v6.4.1

v6.4.0

v6.3.0

v6.2.2

v6.2.1

v6.2.0

v6.1.0

v6.0.6

v6.0.5

v6.0.4

v6.0.3

v6.0.2

v6.0.1

v6.0.0

v0.0.0-beta

v5.1.14

v5.1.13

v5.1.12

v5.1.11

v5.1.10

v5.1.9

v5.1.8

v5.1.7

v5.1.6

v5.1.5

v5.1.4

v5.1.3

v5.1.2

v5.1.1

v5.1.0

v5.0.2

v5.0.1

v5.0.0

v4.4.0

v4.3.1

v4.3.0

v4.2.2

v4.2.1

v4.2.0

v4.1.1

v4.1.0

v4.0.0

v3.7.2

v3.7.1

v3.7.0

v3.6.2

v3.6.1

v3.6.0

v3.5.5

v3.5.4

v3.5.3

v3.5.2

v3.5.1

v3.5.0

v3.4.1

v3.4.0

v3.3.1

v3.3.0

v3.2.0

v3.1.1

v3.1.0

v3.0.1

v3.0.0

v2.2.1

v2.2.0

v2.1.0

v2.0.2

v2.0.1

v2.0.0

v1.1.2

v1.1.1

1.0.0-beta

Labels

Clear labels   

Authentication

  

Dependencies

  

Documentation

  

Feature Request

  

Flac

  

Help Wanted

  

Installation/Setup

  

Integration

  

Mobile

  

PR Welcome

  

Pending Release

  

Performance

  

Playlist

  

S3

  

Search

  

Sync

  

[Pri] Low

  

[Pri] Normal

  

[Status] Keep Open

  

[Status] Needs Author Reply

  

[Status] Needs Review

  

[Status] Stale

  

[Status] Will Implement

  

[Type] Blessed

  

[Type] Bug

  

[Type] Duplicate

  

[Type] Enhancement

  

[Type] Help Request

  

[Type] Question

  

[Type] Task

  

pull-request

Mirrored from GitHub Pull Request

No labels

Authentication

Dependencies

Documentation

Feature Request

Flac

Help Wanted

Installation/Setup

Integration

Mobile

PR Welcome

Pending Release

Performance

Playlist

S3

Search

Sync

[Pri] Low

[Pri] Normal

[Status] Keep Open

[Status] Needs Author Reply

[Status] Needs Review

[Status] Stale

[Status] Will Implement

[Type] Blessed

[Type] Bug

[Type] Duplicate

[Type] Enhancement

[Type] Help Request

[Type] Question

[Type] Task

pull-request

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

starred/koel-koel#485

No description provided.