You cannot select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
When `webhook.PROXY_URL` has been set, the old code will check if the proxy host is in `ALLOWED_HOST_LIST` or reject requests through the proxy. It requires users to add the proxy host to `ALLOWED_HOST_LIST`. However, it actually allows all requests to any port on the host, when the proxy host is probably an internal address. But things may be even worse. `ALLOWED_HOST_LIST` doesn't really work when requests are sent to the allowed proxy, and the proxy could forward them to any hosts. This PR fixes it by: - If the proxy has been set, always allow connectioins to the host and port. - Check `ALLOWED_HOST_LIST` before forwarding. |
9 months ago | |
---|---|---|
.. | ||
actions | 9 months ago | |
agit | 9 months ago | |
asymkey | 9 months ago | |
attachment | 9 months ago | |
auth | 9 months ago | |
automerge | 1 year ago | |
context | 10 months ago | |
convert | 9 months ago | |
cron | 9 months ago | |
externalaccount | 9 months ago | |
feed | 9 months ago | |
forms | 9 months ago | |
gitdiff | 9 months ago | |
indexer | 9 months ago | |
issue | 9 months ago | |
lfs | 12 months ago | |
mailer | 9 months ago | |
markup | 10 months ago | |
migrations | 9 months ago | |
mirror | 9 months ago | |
notify | 10 months ago | |
org | 9 months ago | |
packages | 10 months ago | |
pull | 9 months ago | |
release | 9 months ago | |
repository | 9 months ago | |
secrets | 10 months ago | |
task | 9 months ago | |
uinotification | 9 months ago | |
user | 9 months ago | |
webhook | 9 months ago | |
wiki | 9 months ago |