I have a Lumen API behind a reverse proxy in a docker container that only responds on port 80. So the client requests a certain domain https://xyz.ab/api/endpoint and everything works fine.
But if you want to use Request->secure() to check if you are on http or https lumen returns false (= http) and generates wrong urls.
I tried to use URL::forceScheme("https"); to tell lumen to use https anyways but lumen still insists on http.
I do not want to install a certificate inside my container only to make lumen believe in https.
Is there a place where I can configure lumen globally to use https instead of http?
Thank you.
Thank you, PtrTon. That was exactly the right answer. Lumen uses Illumintae\Http\Request which extends Symfony\Component\HttpFoundation which includes the setTrustedProxies method.
So what I basically had to do, was:
Configure my Reverse Proxy to forward the correct headers, which are:
For ssl it is enough to add X_FORWARDED_PROTO=https or X_FORWARDED_PORT=443 because these are the values that the secure() method is looking for. As soon as you add them and tell lumen to trust the proxy secure() returns true.