diff --git a/src/Nalu.Web/Program.cs b/src/Nalu.Web/Program.cs
index f7f271f..17c5236 100644
--- a/src/Nalu.Web/Program.cs
+++ b/src/Nalu.Web/Program.cs
@@ -257,6 +257,16 @@ StripeConfiguration.ApiKey = builder.Configuration["Stripe:SecretKey"];
 
 var app = builder.Build();
 
+// ── Forwarded headers (Cloudflare → nginx → app) ─────────────────────────────
+var fwdOpts = new ForwardedHeadersOptions
+{
+    ForwardedHeaders = Microsoft.AspNetCore.HttpOverrides.ForwardedHeaders.XForwardedFor |
+                       Microsoft.AspNetCore.HttpOverrides.ForwardedHeaders.XForwardedProto
+};
+fwdOpts.KnownNetworks.Clear(); // trust all proxies — Cloudflare IPs vary widely
+fwdOpts.KnownProxies.Clear();
+app.UseForwardedHeaders(fwdOpts);
+
 // Initialize MongoDB indexes on startup
 var mongo = app.Services.GetRequiredService<MongoDbContext>();
 await mongo.InitializeAsync();