From ad9dfbffd83352d9fe88b1ea7ab53da396896b41 Mon Sep 17 00:00:00 2001
From: Stefan Haun <tux@netz39.de>
Date: Sat, 12 Nov 2022 01:21:24 +0100
Subject: [PATCH 1/2] :sparkles: Add option to set ProxyPreserveHost

https://httpd.apache.org/docs/current/en/mod/mod_proxy.html#proxypreservehost
---
 .../setup_http_site_proxy/templates/apache-docker-proxy-site.j2  | 1 +
 1 file changed, 1 insertion(+)

diff --git a/roles/setup_http_site_proxy/templates/apache-docker-proxy-site.j2 b/roles/setup_http_site_proxy/templates/apache-docker-proxy-site.j2
index a57db73..a3adea8 100644
--- a/roles/setup_http_site_proxy/templates/apache-docker-proxy-site.j2
+++ b/roles/setup_http_site_proxy/templates/apache-docker-proxy-site.j2
@@ -44,6 +44,7 @@
     ProxyPass / http://{{ backend_host | default("localhost") }}:{{proxy_port}}/ nocanon
     RequestHeader set "X-Forwarded-Proto" expr=%{REQUEST_SCHEME}
     RequestHeader set "X-Forwarded-SSL" expr=%{HTTPS}
+    ProxyPreserveHost {{ proxy_preserve_host | default("Off") }}
 
     <ifmodule mod_rewrite.c>
         # see documentation of wstunnel: This allwos generic websocket passthrough

From 538dd6c470ed6fc3b51bad3390fedf3ce06dba14 Mon Sep 17 00:00:00 2001
From: Stefan Haun <tux@netz39.de>
Date: Sat, 12 Nov 2022 01:21:39 +0100
Subject: [PATCH 2/2] :bug: Set ProxyPreserveHost On for grafana

https://community.grafana.com/t/origin-not-allowed-messages-after-upgrade-to-8-3-6/60550
---
 host-pottwal.yml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/host-pottwal.yml b/host-pottwal.yml
index ae833e0..f433410 100644
--- a/host-pottwal.yml
+++ b/host-pottwal.yml
@@ -414,5 +414,6 @@
       vars:
         site_name: "{{ grafana_domain_name }}"
         proxy_port: "{{ grafana_host_port }}"
+        proxy_preserve_host: "On"
 
   handlers: