fix: add trust proxy for Cloudflare — fixes ERR_ERL_UNEXPECTED_X_FORWARDED_FOR in rate limiter

2026-03-30 06:41:36 +02:00 · 2026-03-30 06:41:36 +02:00 · 39dc5a4ab4
commit 39dc5a4ab4
parent f8892f058f
1 changed files with 3 additions and 0 deletions
--- a/packages/api/src/index.ts
+++ b/packages/api/src/index.ts
@ -16,6 +16,9 @@ import { blogRouter } from "./routes/blog";

 const app = express();

+// Trust Cloudflare proxy (required for express-rate-limit with X-Forwarded-For)
+app.set("trust proxy", 1);
+
 // Middleware
 app.use(helmet({ contentSecurityPolicy: false }));
 app.use(cors());