X-Git-Url: https://git.cworth.org/git?a=blobdiff_plain;f=lmno.js;h=d01b3e9478543b20c9a51196677a30a02c30edef;hb=219a2dafd6eea42e66181ef2345590028e18f684;hp=688c7a74e9800e51fde3a1375dcc28239e0862f3;hpb=82706fc10e5a4fc572f798fca29e9741300fb0cc;p=lmno-server

diff --git a/lmno.js b/lmno.js
index 688c7a7..d01b3e9 100644
--- a/lmno.js
+++ b/lmno.js
@@ -32,6 +32,15 @@ The "node lmno-passwd.js" command can help generate password hashes.`);
 }
 
 const app = express();
+
+/* This 'trust proxy' option, (and, really? a space in an option
+ * name?!)  means that express will grab hostname and IP values from
+ * the X-Forwarded-* header fields. We need that so that our games
+ * will display a proper hostname of https://lmno.games/WXYZ instead
+ * of http://localhost/QFBL which will obviously not be a helpful
+ * thing to share around.
+ */
+app.set('trust proxy', true);
 app.use(cors());
 app.use(body_parser.urlencoded({ extended: false }));
 app.use(body_parser.json());