alternative ssl check approach proposal

Author: Will Toozs

lib/api/apiUtils/authorization/permissionChecks.js

@@ -247,10 +247,14 @@ function _checkBucketPolicyConditions(request, conditions, log) {
     if (!conditions) {
         return true;
     }
+    const viaProxy = config.requests.viaProxy;
+
+    const sslEnabled = (viaProxy ?
+        request.headers['x-forwarded-proto'] === 'https' : request.connection.encrypted);
     // build request context from the request!
     const requestContext = new RequestContext(request.headers, request.query,
         request.bucketName, request.objectKey, ip,
-        request.connection.encrypted, request.resourceType, 's3', null, null,
+        sslEnabled, request.resourceType, 's3', null, null,
         null, null, null, null, null, null, null, null, null,
         request.objectLockRetentionDays);
     return evaluators.meetConditions(requestContext, conditions, log);