mirror/iopsys-feed
1
0
Fork 0
mirror of https://dev.iopsys.eu/feed/iopsys.git synced 2025-12-10 07:44:50 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions

sulu: disregard client-provided X-Forwarded-For

Browse source 
This prevents clients from lying about their identity to the MQTT
broker by supplying their own X-Forwarded-For in the request.
This commit is contained in:
Erik Karlsson 2025-10-29 10:39:53 +01:00
parent 8170684100
commit 5631c28df4
1 changed files with 1 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
sulu/sulu-builder/files/etc/sulu/nginx.locations
View file

@ -16,7 +16,7 @@ location /wss {
proxy_set_header Connection $connection_upgrade;
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-For $remote_addr;
proxy_set_header X-Forwarded-Host $host;
proxy_set_header X-Forwarded-Server $host;
proxy_set_header X-Forwarded-Port $server_port;