jamey/berrypod
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects 1 Releases Wiki Activity

exclude /health from force_ssl redirect
All checks were successful
deploy / deploy (push) Successful in 3m38s
Details

Browse Source 
Fly.io internal health checks are made over HTTP, so they get redirected
to HTTPS with a 301 which fails the health check. Exclude /health path
from SSL enforcement.

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
This commit is contained in:
jamey 2026-03-09 10:06:26 +00:00
parent b82d486877
commit 0741095a84
1 changed files with 6 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
config/prod.exs
View File

@ -9,7 +9,12 @@ config :berrypod, BerrypodWeb.Endpoint,
cache_static_manifest: "priv/static/cache_manifest.json",
# HSTS tells browsers to always use HTTPS for this domain (1 year, include subdomains)
# This must be set at compile time, not runtime
force_ssl: [hsts: true, rewrite_on: [:x_forwarded_proto]]
# Exclude /health for Fly.io internal health checks (made over HTTP)
force_ssl: [
hsts: true,
rewrite_on: [:x_forwarded_proto],
exclude: [hosts: ["localhost", "127.0.0.1"], paths: ["/health"]]
]
# Configures Swoosh API Client
config :swoosh, api_client: Swoosh.ApiClient.Req