From 2a2c524d16f716387f9a247361a42fc0564d2bd1 Mon Sep 17 00:00:00 2001 From: Philip Peterson <1326208+philip-peterson@users.noreply.github.com> Date: Sun, 14 Jun 2026 03:00:09 -0700 Subject: [PATCH] fix claw.quineglobal.com redirect loop: forceSSL -> addSSL Cloudflare is in Flexible SSL mode so it hits our origin over HTTP. forceSSL was causing an infinite HTTP->HTTPS redirect loop. Switch to addSSL so HTTPS still works for direct connections while HTTP serves normally through Cloudflare. Co-Authored-By: Claude Sonnet 4.6 --- nixos/nginx.nix | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/nixos/nginx.nix b/nixos/nginx.nix index bfa058f..7913e07 100644 --- a/nixos/nginx.nix +++ b/nixos/nginx.nix @@ -54,7 +54,8 @@ "claw.quineglobal.com" = { enableACME = true; - forceSSL = true; + forceSSL = false; + addSSL = true; locations."/" = { proxyPass = "http://127.0.0.1:4310/";