DRCIT/snipe-it
1
0
Fork 0
mirror of https://github.com/snipe/snipe-it.git synced 2025-03-05 20:52:15 -08:00
Code Issues Actions 1 Packages Projects Releases Wiki Activity

Updated trusted proxy config for newer version

Browse source
This commit is contained in:
snipe 2017-01-13 20:59:54 -08:00
parent acd8eafc8c
commit e54036991c
1 changed files with 44 additions and 4 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

48
config/trustedproxy.php
View file

@ -9,15 +9,55 @@ return [
* supported, along with CIDR notation. * supported, along with CIDR notation.
* *
* The "*" character is syntactic sugar * The "*" character is syntactic sugar
* within TrustedProxy to trust any proxy; * within TrustedProxy to trust any proxy
* that connects directly to your server,
* a requirement when you cannot know the address * a requirement when you cannot know the address
* of your proxy (e.g. if using Rackspace balancers). * of your proxy (e.g. if using Rackspace balancers).
*
* The "**" character is syntactic sugar within
* TrustedProxy to trust not just any proxy that
* connects directly to your server, but also
* proxies that connect to those proxies, and all
* the way back until you reach the original source
* IP. It will mean that $request->getClientIp()
* always gets the originating client IP, no matter
* how many proxies that client's request has
* subsequently passed through.
*/ */
'proxies' => env('APP_TRUSTED_PROXIES') !== null ? explode(env('APP_TRUSTED_PROXIES'), ',') : '*', 'proxies' => env('APP_TRUSTED_PROXIES') !== null ? explode(env('APP_TRUSTED_PROXIES'), ',') : '*',
/* /*
* Or, to trust all proxies, uncomment this: * Or, to trust all proxies that connect
* directly to your server, uncomment this:
*/ */
# 'proxies' => '*', # 'proxies' => '*',
]; /*
* Or, to trust ALL proxies, including those that
* are in a chain of fowarding, uncomment this:
*/
# 'proxies' => '**',
/*
* Default Header Names
*
* Change these if the proxy does
* not send the default header names.
*
* Note that headers such as X-Forwarded-For
* are transformed to HTTP_X_FORWARDED_FOR format.
*
* The following are Symfony defaults, found in
* \Symfony\Component\HttpFoundation\Request::$trustedHeaders
*
* We may also want to add something like:
* \Illuminate\Http\Request::HEADER_CLIENT_PROTO => 'X_FORWARDED_SCHEME',
*/
'headers' => [
\Illuminate\Http\Request::HEADER_CLIENT_IP => 'X_FORWARDED_FOR',
\Illuminate\Http\Request::HEADER_CLIENT_HOST => 'X_FORWARDED_HOST',
\Illuminate\Http\Request::HEADER_CLIENT_PROTO => 'X_FORWARDED_PROTO',
\Illuminate\Http\Request::HEADER_CLIENT_PORT => 'X_FORWARDED_PORT',
]
];