middleware/redirect.go · v3.3.10 · labstack / echo

Avoid redirect loop in HTTPSRedirect middleware (#1058) · ef82f3e0

orangain authored Feb 03, 2018

In HTTPSRedirect and similar middlewares, determining if redirection is
needed using `c.IsTLS()` causes redirect loop when an application is running
behind a TLS termination proxy, e.g. AWS ELB.

Instead, I believe, redirection should be determined by
`c.Scheme() != "https"`. This works well even behind a TLS termination proxy.

ef82f3e0