Cutlery/invoiceninja
1
0
Fork 0
mirror of https://github.com/invoiceninja/invoiceninja.git synced 2025-11-04 05:47:34 -05:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #1908 from arubacao/feature/trust-all-proxies-dev

Browse Source 
add option to allow every proxy
This commit is contained in:
Hillel Coren 2018-02-21 12:49:11 +02:00 committed by GitHub
commit 89601592d9
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 6 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
app/Http/Middleware/StartupCheck.php
View File

@ -36,9 +36,14 @@ class StartupCheck
// Set up trusted X-Forwarded-Proto proxies // Set up trusted X-Forwarded-Proto proxies
// TRUSTED_PROXIES accepts a comma delimited list of subnets // TRUSTED_PROXIES accepts a comma delimited list of subnets
// ie, TRUSTED_PROXIES='10.0.0.0/8,172.16.0.0/12,192.168.0.0/16' // ie, TRUSTED_PROXIES='10.0.0.0/8,172.16.0.0/12,192.168.0.0/16'
// set TRUSTED_PROXIES=* if you want to trust every proxy.
if (isset($_ENV['TRUSTED_PROXIES'])) { if (isset($_ENV['TRUSTED_PROXIES'])) {
if (env('TRUSTED_PROXIES') == '*') {
$request->setTrustedProxies(['127.0.0.1', $request->server->get('REMOTE_ADDR')]);
} else{
$request->setTrustedProxies(array_map('trim', explode(',', env('TRUSTED_PROXIES')))); $request->setTrustedProxies(array_map('trim', explode(',', env('TRUSTED_PROXIES'))));
} }
}
// Ensure all request are over HTTPS in production // Ensure all request are over HTTPS in production
if (Utils::requireHTTPS() && ! $request->secure()) { if (Utils::requireHTTPS() && ! $request->secure()) {