server {    listen 5443 ssl;    listen [::]:5443 ssl ipv6only=on;    server_name coder.xxxxx.com *.coder.xxxxx.com;    ssl_certificate "/acme.sh/coder.xxxxx.com_ecc/fullchain.cer";    ssl_certificate_key "/acme.sh/coder.xxxxx.com_ecc/coder.xxxxx.com.key";    location / {        set $target_host coder.coder.svc.cluster.local;        proxy_pass http://$target_host:80;        # allow large file uploads        client_max_body_size 50000M;        proxy_http_version 1.1;        proxy_set_header Upgrade $http_upgrade;        proxy_set_header Connection upgrade;        proxy_set_header Host $host;        proxy_set_header X-Real-IP $remote_addr;        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;        proxy_set_header X-Forwarded-Proto $http_x_forwarded_proto;        add_header Strict-Transport-Security "max-age=15552000; includeSubDomains" always;    }}

I check the log on Nginx, it shows10.42.0.1 - - [14/Jun/2025:01:54:33 +0800]"GET /api/v2/notifications/inbox/watch?read_status=unread HTTP/1.1" 403 289"-""Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/137.0.0.0 Safari/537.36 Edg/137.0.0.0""-"And the debug log on Coder2025-06-13 17:45:02.630 [debu]  coderd: GET  host=coder.xxxxx.com  path=/api/v2/notifications/inbox/watch  proto=HTTP/1.1  remote_addr=10.42.0.233  start="2025-06-14T01:45:02.62513897+08:00"  requestor_id=95338bb9-03f4-4f07-9c8f-1a9bcd72c8f3  requestor_name=xxxxx  requestor_email=root@xxxxx.com  took=5.36254ms  status_code=403  latency_ms=5  request_id=cda11b6e-0c10-4929-997a-e2d3ac63c992