Welcome to mirror list, hosted at ThFree Co, Russian Federation.

gitlab.com/gitlab-org/gitlab-foss.git - Unnamed repository; edit this file 'description' to name the repository.
summaryrefslogtreecommitdiff
path: root/config/initializers/trusted_proxies.rb
AgeCommit message (Collapse)Author
2019-03-13Run rubocop -aNick Thomas
2018-12-14Remove rails 4 support in CI, Gemfiles, bin/ and config/Jasper Maes
2018-05-03[Rails5] Fix trusted proxiesblackst0ne
There is a bug in trusted proxies: https://github.com/rails/rails/issues/5223 This commit adds a monkey patch to fix the bug. Example of errors: ``` 1) trusted_proxies with default config preserves private IPs Failure/Error: expect(request.ip).to eq('10.1.5.89') expected: "10.1.5.89" got: nil (compared using ==) # ./spec/initializers/trusted_proxies_spec.rb:12:in `block (3 levels) in <top (required)>' 2) trusted_proxies with default config filters out localhost Failure/Error: expect(request.ip).to eq('10.1.5.89') expected: "10.1.5.89" got: "1.1.1.1" (compared using ==) # ./spec/initializers/trusted_proxies_spec.rb:18:in `block (3 levels) in <top (required)>' ```
2017-08-15Enable Layout/TrailingWhitespace cop and auto-correct offensesRobert Speicher
2017-02-23Enable Style/SpaceInsideBracketsDouwe Maan
2016-07-31Ignore invalid IPs in X-Forwarded-For when trusted proxies are configured.lookatmike
2016-07-24Ignore invalid trusted proxies in X-Forwarded-For headerStan Hu
Certain reverse proxies can send invalid IP addresses in the X-Forwarded-For header For example, Apache can send (null). Closes #20194
2016-06-30Make Rack::Request use our trusted proxies when filtering IP addressesDJ Mountney
This allows us to control the trusted proxies while deployed in a private network. Normally Rack::Request will trust all private IPs as trusted proxies, which can caue problems if your users are connection on you network via private IP ranges. Normally in a rails app this is handled by action_dispatch request, but rack_attack is specifically using the Rack::Request object instead.
2016-04-28Pass trusted_proxies to action_dispatch as IPAddrs instead of stringsDJ Mountney
Without this setting your own trusted_proxies does not work.
2016-04-12Adjust the default trusted_proxies to only include localhost, and allow ↵DJ Mountney
other trusted proxies to be configured.
    generated by cgit v1.2.3 (git 2.25.1) at 2024-08-14 16:50:18 +0300