-
Notifications
You must be signed in to change notification settings - Fork 2.7k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Add Support for Trusted Proxy Detection on Forwarded Requests #44184
Add Support for Trusted Proxy Detection on Forwarded Requests #44184
Conversation
This commit introduces a way to determine if a request behind a proxy has been forwarded by a trusted proxy. It implements a custom header (`X-Forwarded-Trusted-Proxy`) that allows request processing to verify the presence of this header, indicating the request originated from a trusted source. To prevent forgery, any incoming request containing this custom header has it removed before further processing.
Status for workflow
|
🎊 PR Preview d085393 has been successfully built and deployed to https://quarkus-pr-main-44184-preview.surge.sh/version/main/guides/
|
Status for workflow
|
I've added the backport label because it was requested. Now, it's a feature (minimal but still a feature), so I won't fight for it. If it merges clean, that's okay. |
This PR introduces a way to determine if a trusted proxy has forwarded a request behind a proxy. It implements a custom header (
X-Forwarded-Trusted-Proxy
) that allows request processing to verify the presence of this header, indicating the request originated from a trusted source.To prevent forgery, any incoming request containing this custom header has it removed before further processing.
CC @shawkins