Mirrors/etherpad-lite
1
0
Fork 0
mirror of https://github.com/ether/etherpad-lite.git synced 2026-01-23 18:55:21 +00:00
Code Issues Projects Releases Wiki Activity
etherpad-lite/tests/ratelimit
History
Exact
webzwo0i ceb09ce99a
security: Support proxy with rate limiting and include CI test coverage for nginx rev proxy (#4373) 
Previously Etherpad would not pass the correct client IP address through and this caused the rate limiter to limit users behind reverse proxies.  This change allows Etherpad to use a client IP passed from a reverse proxy.

Note to devs: This header can be spoofed and spoofing the header could be used in an attack.  To mitigate additional *steps should be taken by Etherpad site admins IE doing rate limiting at proxy.*  This only really applies to large scale deployments but it's worth noting.
2020-10-01 10:39:01 +01:00
..
Dockerfile.anotherip security: Support proxy with rate limiting and include CI test coverage for nginx rev proxy (#4373) 2020-10-01 10:39:01 +01:00
Dockerfile.nginx security: Support proxy with rate limiting and include CI test coverage for nginx rev proxy (#4373) 2020-10-01 10:39:01 +01:00
nginx.conf security: Support proxy with rate limiting and include CI test coverage for nginx rev proxy (#4373) 2020-10-01 10:39:01 +01:00
send_changesets.js security: Support proxy with rate limiting and include CI test coverage for nginx rev proxy (#4373) 2020-10-01 10:39:01 +01:00
testlimits.sh security: Support proxy with rate limiting and include CI test coverage for nginx rev proxy (#4373) 2020-10-01 10:39:01 +01:00