-
Notifications
You must be signed in to change notification settings - Fork 1.7k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
set ForwardedAllowIPS via cli #642
Conversation
🍺 |
🍻 |
@georgexsh well if we use the remote address then we should probably make some naming change like |
@benoitc I dont quite get your point .. |
@georgexsh OK so just to be clear we are right now parsing this forward headers to construct the remote address. Which is apparently against the spec. We don't need to parse the if we just collect the remote address from the client (except maybe when using a unix socket). If I understand well you are using it to filters the client that connect to you app. At this point I wonder if it should be done at the server level or at the the application level. If we do it at the server level, the it may be relevant to have an option to check all remotes ips. the one coming as a remote ip and the one in the forward headers. That why I was speaking about that change. Will see what we decide later in the day. |
@benoitc your latest explanation confused me even deeper ...
yes for
not for my app, but wsgi spec: |
@georgexsh you're right I'm just confused with the option name right now. I really think it should something else. not sure what. Maybe it should ne |
ping @benoitc |
applied thanks :) On Thu, Dec 26, 2013 at 11:59 AM, georgexsh notifications@github.51.alwrote:
|
set
ForwardedAllowIPS
option via cli--forwarded-allow-ips
example: