Update default.conf to include X-Forwarded-Host overwrite as default #9

Maksym-0xp · 2024-05-31T11:21:35Z

This prevents X-Forwarded forgery if upstream services trust the headers set by nginx, and downstream clients can set falsified forward headers.
I see this as being a good default for a reverse proxy.

This prevents X-Forwarded forgery if upstream services trust the headers set by nginx, and downstream clients can set falsified forward headers.

githubsaturn · 2024-05-31T15:25:53Z

Thanks!

Update default.conf to include X-Forwarded-Host overwrite as default

5cd2e28

This prevents X-Forwarded forgery if upstream services trust the headers set by nginx, and downstream clients can set falsified forward headers.

githubsaturn merged commit 882137b into caprover:master May 31, 2024

Maksym-0xp deleted the patch-1 branch July 14, 2024 07:05

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Update default.conf to include X-Forwarded-Host overwrite as default #9

Update default.conf to include X-Forwarded-Host overwrite as default #9

Uh oh!

Maksym-0xp commented May 31, 2024

Uh oh!

githubsaturn commented May 31, 2024

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

Update default.conf to include X-Forwarded-Host overwrite as default #9

Update default.conf to include X-Forwarded-Host overwrite as default #9

Uh oh!

Conversation

Maksym-0xp commented May 31, 2024

Uh oh!

githubsaturn commented May 31, 2024

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants