From 99fc601f5bef02311819b2d159fcbbf998ad672a Mon Sep 17 00:00:00 2001
From: "copilot-swe-agent[bot]" <198982749+Copilot@users.noreply.github.com>
Date: Thu, 19 Feb 2026 11:30:40 +0000
Subject: [PATCH] Address code review: fix proxy_redirect conflict and add
 TLSv1.3 support

Co-authored-by: alexbelgium <44178713+alexbelgium@users.noreply.github.com>
---
 seerr/rootfs/etc/nginx/includes/proxy_params.conf | 2 +-
 seerr/rootfs/etc/nginx/includes/ssl_params.conf   | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/seerr/rootfs/etc/nginx/includes/proxy_params.conf b/seerr/rootfs/etc/nginx/includes/proxy_params.conf
index 1990d4959..aa69123d7 100644
--- a/seerr/rootfs/etc/nginx/includes/proxy_params.conf
+++ b/seerr/rootfs/etc/nginx/includes/proxy_params.conf
@@ -1,7 +1,7 @@
 proxy_http_version          1.1;
 proxy_ignore_client_abort   off;
 proxy_read_timeout          86400s;
-proxy_redirect              off;
+#proxy_redirect              off;
 proxy_send_timeout          86400s;
 proxy_max_temp_file_size    0;
 
diff --git a/seerr/rootfs/etc/nginx/includes/ssl_params.conf b/seerr/rootfs/etc/nginx/includes/ssl_params.conf
index 6f1500599..6cf1b5a3e 100644
--- a/seerr/rootfs/etc/nginx/includes/ssl_params.conf
+++ b/seerr/rootfs/etc/nginx/includes/ssl_params.conf
@@ -1,4 +1,4 @@
-ssl_protocols TLSv1.2;
+ssl_protocols TLSv1.2 TLSv1.3;
 ssl_prefer_server_ciphers on;
 ssl_ciphers ECDHE-RSA-AES256-GCM-SHA512:DHE-RSA-AES256-GCM-SHA512:ECDHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:DHE-RSA-AES256-SHA;
 ssl_ecdh_curve secp384r1;