-
Notifications
You must be signed in to change notification settings - Fork 317
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
X-Forwarded-For (client_ip->source) with unix: #642
Comments
@ocanty Thanks for the work you've done. Is it possible to extend support for this feature to unix socket users as a listener? |
Hi @echolimazulu, I have some initial draft of a patch set to add this feature. Do you have some configuration with which I can test it? Thanks, |
Good morning @alejandro-colomar, Thank you for your reaction and work on this issue! I apologize for the long answer. Within 1 hour, I will provide you with the Unit configuration you requested. |
@alejandro-colomar, UPDATE: UPDATE2: /var/lib/unit/conf.json
/opt/falcon/things_asgi.py
/bin/bash:
|
Thanks! Could you please also write all of the commands you used to configure, compile, install, run, run-time config, etc.? |
Ping :) I'm having trouble trying that. Please share all of the commands you used so that I can fully reproduce it. |
Hello @alejandro-colomar! I apologize for the long responses on my part. Unfortunately, the process of building Unit and its modules in our CI/CD system is covered by confidentiality requirements that I cannot violate. I can only say that the assembly practically does not differ from the standard one for debugging with ASGI support. I will try to test the improvement you suggested in our build system and let you know about all the nuances that arose during use. Please give me a few days to sort this out. Thank you for the work you have done! |
No worries :)
Okay. Anyway, if you can simplify them by removing extra stuff and leave a minimum working set of commands that contain no sensitive information it would be of great help. If you can't, I'll understand. My problem is that I've never successfully built and used unit modules; I always get a failure for one or other reason.
Thanks, that would be of great help too!
:-} |
@alejandro-colomar, I have tested your solution. In my case, it works great! All necessary information in the This issue can be closed. @VBart I would like to mark this PR: #655 as a solution to the mentioned problem. @alejandro-colomar, on the issue: #641 I will try to form the necessary configuration for you to reproduce the specified issue. |
I'm very happy to know that it works great for you! Cheers, |
Who is affected?
- All users of the unix socket as a listener
Hello Nginx Team and Contributors,
Commit with function: ca373aa
It is necessary to extend the function of replacing a remote client address by introducing support for specifying the appropriate source when using a unix socket.
In case you are using a
unix:
socket in your configuration, address replacing is not possible based on the CIDRsource
address format.The format mask:
0.0.0.0/0
is not applicable (not operational) using the unix listener.The text was updated successfully, but these errors were encountered: