From 0ee13791fbf81f588f840578e5c3854a7eb06133 Mon Sep 17 00:00:00 2001
From: nsfisis <nsfisis@gmail.com>
Date: Sun, 2 Nov 2025 18:42:09 +0900
Subject: fix: do not rewrite scheme if HTTPS is not served

---
 server.go | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/server.go b/server.go
index 261b6bf..363464b 100644
--- a/server.go
+++ b/server.go
@@ -52,9 +52,9 @@ func basicAuthHandler(handler http.Handler, realm, username, passwordHash string
 	})
 }
 
-func newMultipleReverseProxyServer(ps []ProxyConfig) (*multipleReverseProxyServer, error) {
+func newMultipleReverseProxyServer(cfg *ServerConfig) (*multipleReverseProxyServer, error) {
 	var rules []rewriteRule
-	for _, p := range ps {
+	for _, p := range cfg.Proxies {
 		targetUrl, err := url.Parse(fmt.Sprintf("http://%s:%d", p.To.Host, p.To.Port))
 		if err != nil {
 			return nil, err
@@ -85,7 +85,7 @@ func newMultipleReverseProxyServer(ps []ProxyConfig) (*multipleReverseProxyServe
 					return nil
 				}
 				locationUrl.Host = p.From.Host
-				if locationUrl.Scheme == "http" {
+				if cfg.RedirectToHTTPS && locationUrl.Scheme == "http" {
 					locationUrl.Scheme = "https"
 				}
 				r.Header.Set("Location", locationUrl.String())
@@ -158,7 +158,7 @@ func NewServer(cfg *ServerConfig) (*Server, error) {
 			http.Redirect(w, r, target.String(), http.StatusMovedPermanently)
 		})
 	} else {
-		reverseProxyServer, err := newMultipleReverseProxyServer(cfg.Proxies)
+		reverseProxyServer, err := newMultipleReverseProxyServer(cfg)
 		if err != nil {
 			return nil, err
 		}
-- 
cgit v1.3-1-g0d28