Searched hist:"925105 e82bbaf10d0b6330b81350f14a5a176eb4" (Results 1 – 4 of 4) sorted by relevance
| /dokuwiki/lib/plugins/config/lang/en/ |
| H A D | lang.php | 925105e82bbaf10d0b6330b81350f14a5a176eb4 Mon Oct 21 00:31:40 UTC 2019 Phy <git@phy25.com> clientIP: add trustedproxy, return first untrusted IP instead of the last one
This fixes #2828, where malicious clients passed in customized HTTP header to keep its IP address off records.
This is inspired by Sympony's Request::setTrustedProxies, but I don't want to implement everything including IP CIDR matching (IPv4 + IPv6), so I decided to reuse the local IP checker in place powered by regexp. Now admins can customize this "local" (trusted) proxy list using $conf['trustedproxy'], and by default it will allow any local IPs.
If in the future there is a need to implement array-based CIDR matching, $conf['trustedproxies'] can be used for the new config name.
|
| /dokuwiki/lib/plugins/config/settings/ |
| H A D | config.metadata.php | 925105e82bbaf10d0b6330b81350f14a5a176eb4 Mon Oct 21 00:31:40 UTC 2019 Phy <git@phy25.com> clientIP: add trustedproxy, return first untrusted IP instead of the last one
This fixes #2828, where malicious clients passed in customized HTTP header to keep its IP address off records.
This is inspired by Sympony's Request::setTrustedProxies, but I don't want to implement everything including IP CIDR matching (IPv4 + IPv6), so I decided to reuse the local IP checker in place powered by regexp. Now admins can customize this "local" (trusted) proxy list using $conf['trustedproxy'], and by default it will allow any local IPs.
If in the future there is a need to implement array-based CIDR matching, $conf['trustedproxies'] can be used for the new config name.
|
| /dokuwiki/conf/ |
| H A D | dokuwiki.php | 925105e82bbaf10d0b6330b81350f14a5a176eb4 Mon Oct 21 00:31:40 UTC 2019 Phy <git@phy25.com> clientIP: add trustedproxy, return first untrusted IP instead of the last one
This fixes #2828, where malicious clients passed in customized HTTP header to keep its IP address off records.
This is inspired by Sympony's Request::setTrustedProxies, but I don't want to implement everything including IP CIDR matching (IPv4 + IPv6), so I decided to reuse the local IP checker in place powered by regexp. Now admins can customize this "local" (trusted) proxy list using $conf['trustedproxy'], and by default it will allow any local IPs.
If in the future there is a need to implement array-based CIDR matching, $conf['trustedproxies'] can be used for the new config name.
|
| /dokuwiki/inc/ |
| H A D | common.php | 925105e82bbaf10d0b6330b81350f14a5a176eb4 Mon Oct 21 00:31:40 UTC 2019 Phy <git@phy25.com> clientIP: add trustedproxy, return first untrusted IP instead of the last one
This fixes #2828, where malicious clients passed in customized HTTP header to keep its IP address off records.
This is inspired by Sympony's Request::setTrustedProxies, but I don't want to implement everything including IP CIDR matching (IPv4 + IPv6), so I decided to reuse the local IP checker in place powered by regexp. Now admins can customize this "local" (trusted) proxy list using $conf['trustedproxy'], and by default it will allow any local IPs.
If in the future there is a need to implement array-based CIDR matching, $conf['trustedproxies'] can be used for the new config name.
|