From 114c405e86d1958f83f1d10a2ee81ee21ee0bd8b Mon Sep 17 00:00:00 2001
From: Thomas <tway@cloudflare.com>
Date: Tue, 27 Feb 2024 18:15:52 +0000
Subject: [PATCH] Use webservice HTTPS if enabled

This changes workhorse to use HTTPS for the webservice if enabled, because it
can affect CSRF tokens.

	InvalidAuthenticityToken (Can't verify CSRF token authenticity.)
---
 charts/gitlab/charts/webservice/templates/deployment.yaml | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/charts/gitlab/charts/webservice/templates/deployment.yaml b/charts/gitlab/charts/webservice/templates/deployment.yaml
index 24c24b5d49..69bc10c341 100644
--- a/charts/gitlab/charts/webservice/templates/deployment.yaml
+++ b/charts/gitlab/charts/webservice/templates/deployment.yaml
@@ -355,7 +355,11 @@ spec:
             - name: TMPDIR
               value: "/tmp/gitlab"
             - name: GITLAB_WORKHORSE_AUTH_BACKEND
+              {{ if $.Values.tls.enabled -}}
+              value: "https://localhost:{{ $.Values.service.tls.internalPort }}"
+              {{- else -}}
               value: "http://localhost:{{ $.Values.service.internalPort }}"
+              {{- end }}
             - name: GITLAB_WORKHORSE_EXTRA_ARGS
               value: {{ .workhorse.extraArgs | quote }}
             - name: GITLAB_WORKHORSE_LISTEN_PORT
-- 
GitLab