better postinstall apps

nextcloud/reverse-proxy/nginx.conf

@@ -82,15 +82,15 @@ http {
             # The rules in this block are an adaptation of the rules
             # in `.htaccess` that concern `/.well-known`.
 
-            location = /.well-known/carddav { return 301 /remote.php/dav; }
-            location = /.well-known/caldav { return 301 /remote.php/dav; }
+            location = /.well-known/carddav { return 301 https://$host/remote.php/dav; }
+            location = /.well-known/caldav { return 301 https://$host/remote.php/dav; }
 
             location /.well-known/acme-challenge { try_files $uri $uri/ =404; }
             location /.well-known/pki-validation { try_files $uri $uri/ =404; }
 
             # Let Nextcloud's API for `/.well-known` URIs handle all other
             # requests by passing them to the front-end controller.
-            return 301 /index.php$request_uri;
+            return 301 https://$host/index.php$request_uri;
         }
 
         location = /robots.txt {
@@ -138,6 +138,10 @@ http {
             fastcgi_param PATH_INFO $fastcgi_path_info;
             fastcgi_param HTTPS on;
             fastcgi_param modHeadersAvailable true; #Avoid sending the security headers twice
+            fastcgi_param HTTP_X_FORWARDED_FOR $proxy_add_x_forwarded_for;
+            fastcgi_param HTTP_X_FORWARDED_PROTO $scheme;
+            fastcgi_param HTTP_X_FORWARDED_HOST $host;
+            fastcgi_param REMOTE_ADDR $remote_addr;
             fastcgi_pass backend;
             fastcgi_intercept_errors on;
         }