Merge pull request #106295 from cephalin/issue48678

PRMerger6 · web-flow · commit 585e7bcbfbbd · 2020-03-03T08:00:32.000-08:00
#48678
diff --git a/articles/app-service/configure-ssl-bindings.md b/articles/app-service/configure-ssl-bindings.md
@@ -142,6 +142,12 @@ In your app page, in the left navigation, select **SSL settings**. Then, in **TL
 
 When the operation is complete, your app rejects all connections with lower TLS versions.
 
+## Handle SSL termination
+
+In App Service, [SSL termination](https://wikipedia.org/wiki/TLS_termination_proxy) happens at the network load balancers, so all HTTPS requests reach your app as unencrypted HTTP requests. If your app logic needs to check if the user requests are encrypted or not, inspect the `X-Forwarded-Proto` header.
+
+Language specific configuration guides, such as the [Linux Node.js configuration](containers/configure-language-nodejs.md#detect-https-session) guide, shows you how to detect an HTTPS session in your application code.
+
 ## Automate with scripts
 
 ### Azure CLI
