The configuration used by Ghost CLI looks like this:
x-forwarded-proto
header being set incorrectly. Your proxy will handle SSL termination and proxy to Ghost using http. To tell Ghost that the requests coming into the proxy are secure, set the x-forwarded-proto
header to https
. Without this, Ghost will think the requests are insecure, attempt to redirect to the https version of a URL and cause an infinite redirect loop.
If you’re using nginx, don’t forget to also increase the max body size if you need to allow for large uploads of images, themes or imports.