From a18142277fc118116652a728b722c7c216216631 Mon Sep 17 00:00:00 2001
From: Julien Oculi <xdrz.jot.sr@gmail.com>
Date: Sat, 22 Jun 2024 16:07:47 +0200
Subject: [PATCH] fix(api): :bug: prevent webauthn relying party protocol
 mismatch when server is behind a proxy

---
 src/webauthn/mod.ts | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/src/webauthn/mod.ts b/src/webauthn/mod.ts
index 4d55e20..f8eaf17 100644
--- a/src/webauthn/mod.ts
+++ b/src/webauthn/mod.ts
@@ -1,6 +1,11 @@
 export function getRelyingParty(url: string | URL) {
 	url = new URL(url)
 
+	// Prevent protocol mismatch when server is behind a proxy
+	if (!['localhost', '127.0.0.1', '0.0.0.0'].includes(url.hostname)) {
+		url.protocol = 'https'
+	}
+
 	return {
 		/**
 		 * Human-readable title for your website