From ea24a52ef250f0efeb828a52a0d9e57a50595a75 Mon Sep 17 00:00:00 2001
From: ArielWandera <arielwandera@email.com>
Date: Mon, 1 Jun 2026 20:52:22 +0300
Subject: [PATCH] fix: forward X-Bot-Secret header through CloudFront to EC2

---
 infrastructure/cloudfront.tf | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/infrastructure/cloudfront.tf b/infrastructure/cloudfront.tf
index efc14dc..55d609a 100644
--- a/infrastructure/cloudfront.tf
+++ b/infrastructure/cloudfront.tf
@@ -148,7 +148,7 @@ resource "aws_cloudfront_distribution" "frontend" {
 
       forwarded_values {
         query_string = true
-        headers      = ["Authorization", "Content-Type", "Accept", "Origin", "X-User-Id", "X-User-Role"]
+        headers      = ["Authorization", "Content-Type", "Accept", "Origin", "X-User-Id", "X-User-Role", "X-Bot-Secret"]
         cookies { forward = "all" }
       }