X-Forwarded-Proto header

The HTTPX-Forwarded-Proto (XFP)request header is a de-facto standard header for identifying the protocol (HTTP or HTTPS) that a client used to connect to aproxy or load balancer.

Server access logs contain the protocol used between the server and the load balancer, but not the protocol used between the client and the load balancer.To determine the protocol used between the client and the load balancer, theX-Forwarded-Proto request header can be used.

A standardized version of this header is the HTTPForwarded header, although it's much less frequently used.

Header type	Request header
Forbidden request header	No

Syntax

http

X-Forwarded-Proto: <protocol>

Directives

<protocol>: The forwarded protocol (http orhttps).

Examples

X-Forwarded-Proto client protocol

The following header indicates that the original request was made over HTTPS before being forwarded by a proxy or load balancer:

http

X-Forwarded-Proto: https

Non-standard forms

The following forms may be seen in request headers:

http

# MicrosoftFront-End-Https: onX-Forwarded-Protocol: httpsX-Forwarded-Ssl: onX-Url-Scheme: https

Specifications

Not part of any current specification. The standardized version of this header isForwarded.

Help improve MDN

Learn how to contribute

This page was last modified on⁨Jul 4, 2025⁩ byMDN contributors.

View this page on GitHub •Report a problem with this content

Movatterモバイル変換

X-Forwarded-Proto header

Syntax

Directives

Examples

X-Forwarded-Proto client protocol

Non-standard forms

Specifications

See also

Help improve MDN