Page MenuHomeDevCentral

Enum
ClosedPublic

Authored by dereckson on Jul 13 2015, 20:23.
Tags
None
Referenced Files
Unknown Object (File)
Tue, Dec 17, 07:17
Unknown Object (File)
Sat, Dec 14, 20:18
Unknown Object (File)
Thu, Dec 12, 07:15
Unknown Object (File)
Sat, Dec 7, 20:52
Unknown Object (File)
Fri, Dec 6, 17:37
Unknown Object (File)
Fri, Dec 6, 03:40
Unknown Object (File)
Tue, Dec 3, 13:41
Unknown Object (File)
Tue, Dec 3, 08:02
Subscribers
None

Details

Summary

A technical glitch sent to review AND Enum AND TrustProxy. The first intent were to send only the TrustProxy part.

Enum

Imported an Enum type

Next differential revision to come using this Enum

A new TrustProxy middleware allows to set a trust strategy about
potentially spoofable headers like HTTP_X_FORWARDED_PROTO and
HTTP_X_FORWARDED_FOR. This solves the proxy HTTPS problem.

We an app.proxy configuration option defined like this:

Auth Grove can handle proxy headers like HTTP_X_FORWARDED_PROTO
according your configuration.

  • To always trust forward headers, adds a star entry: ['*']
  • To never trust any server, use an empty array: []
  • To specify the proxies servers, create an array with each IP.

If you put Auth Grove on an back-end application server, with a
front-end nginx responsible for SSL termination,
you can set the front-end IPs or blindly trust any remote
address with a magic entry '*'.

Diff Detail

Repository
rGROVE Auth Grove
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

dereckson retitled this revision from to Allow to serve https:// links behind a front-end server with SSL termination.
dereckson updated this object.
dereckson edited the test plan for this revision. (Show Details)
dereckson added reviewers: fauve, xcombelle.
dereckson added a subscriber: security.
This revision was automatically updated to reflect the committed changes.

Well..

Only this part has been merged in master:

dc3c4cfd8195 cb06caf1aa85 a524afa5b17c Sébastien Santoro
Imported Enum support from artisaninweb/laravel-enum (Show More…)

dereckson retitled this revision from Allow to serve https:// links behind a front-end server with SSL termination to Enum.Jul 13 2015, 20:34
dereckson updated this object.
dereckson edited the test plan for this revision. (Show Details)
dereckson removed reviewers: xcombelle, fauve.
dereckson removed a subscriber: security.