v/PrintABrick
1
0
Fork 0
mirror of https://github.com/ToxicCrack/PrintABrick.git synced 2025-05-16 20:30:09 -07:00
Code Issues Projects Releases Wiki Activity

Setup trusted proxy

Browse Source 
Fixes #2
This commit is contained in:
Unknown 2017-06-02 11:29:02 +02:00
parent 85ec4e5481
commit 1241ff48fe
2 changed files with 9 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
web/app.php
View File

@ -13,6 +13,7 @@ $kernel = new AppKernel('prod', false);
// When using the HttpCache, you need to call the method in your front controller instead of relying on the configuration parameter // When using the HttpCache, you need to call the method in your front controller instead of relying on the configuration parameter
//Request::enableHttpMethodParameterOverride(); //Request::enableHttpMethodParameterOverride();
$request = Request::createFromGlobals(); $request = Request::createFromGlobals();
Request::setTrustedProxies([$request->server->get('REMOTE_ADDR')],Request::HEADER_X_FORWARDED_ALL);
$response = $kernel->handle($request); $response = $kernel->handle($request);
$response->send(); $response->send();
$kernel->terminate($request, $response); $kernel->terminate($request, $response);

15
web/app_dev.php
View File

@ -10,13 +10,13 @@ use Symfony\Component\Debug\Debug;
// This check prevents access to debug front controllers that are deployed by accident to production servers. // This check prevents access to debug front controllers that are deployed by accident to production servers.
// Feel free to remove this, extend it, or make something more sophisticated. // Feel free to remove this, extend it, or make something more sophisticated.
//if (isset($_SERVER['HTTP_CLIENT_IP']) if (isset($_SERVER['HTTP_CLIENT_IP'])
// || isset($_SERVER['HTTP_X_FORWARDED_FOR']) || isset($_SERVER['HTTP_X_FORWARDED_FOR'])
// || !(in_array(@$_SERVER['REMOTE_ADDR'], ['127.0.0.1', '::1']) || php_sapi_name() === 'cli-server') || !(in_array(@$_SERVER['REMOTE_ADDR'], ['127.0.0.1', '::1']) || php_sapi_name() === 'cli-server')
//) { ) {
// header('HTTP/1.0 403 Forbidden'); header('HTTP/1.0 403 Forbidden');
// exit('You are not allowed to access this file. Check '.basename(__FILE__).' for more information.'); exit('You are not allowed to access this file. Check '.basename(__FILE__).' for more information.');
//} }
/** @var \Composer\Autoload\ClassLoader $loader */ /** @var \Composer\Autoload\ClassLoader $loader */
$loader = require __DIR__.'/../app/autoload.php'; $loader = require __DIR__.'/../app/autoload.php';
@ -25,6 +25,7 @@ Debug::enable();
$kernel = new AppKernel('dev', true); $kernel = new AppKernel('dev', true);
//$kernel->loadClassCache(); //$kernel->loadClassCache();
$request = Request::createFromGlobals(); $request = Request::createFromGlobals();
Request::setTrustedProxies([$request->server->get('REMOTE_ADDR')],Request::HEADER_X_FORWARDED_ALL);
$response = $kernel->handle($request); $response = $kernel->handle($request);
$response->send(); $response->send();
$kernel->terminate($request, $response); $kernel->terminate($request, $response);