Page MenuHomePhorge
Differential D4680

AllowedHosts middleware to restrict allowed hosts
ClosedPublic
Actions

Authored by mollekopf on Wed, Apr 3, 1:05 PM.
Tags
None
Referenced Files
Unknown Object (File)
Sat, Apr 27, 1:54 PM
Unknown Object (File)
Sat, Apr 27, 1:51 PM
Unknown Object (File)
Sat, Apr 27, 1:50 PM
Unknown Object (File)
Thu, Apr 25, 10:18 AM
Unknown Object (File)
Sun, Apr 21, 6:13 AM
Unknown Object (File)
Sun, Apr 21, 6:11 AM
Unknown Object (File)
Sun, Apr 21, 6:10 AM
Unknown Object (File)
Fri, Apr 19, 12:47 PM
View All 33 Files
Subscribers
machniak

Details

Reviewers
machniak
Group Reviewers
Restricted Project
Commits
rKa89b72e22ff2: AllowedHosts middleware to restrict allowed hosts

Diff Detail

Repository
rK kolab
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

mollekopf requested review of this revision.Wed, Apr 3, 1:05 PM
mollekopf created this revision.
Harbormaster completed remote builds in B46944: Diff 13464.Wed, Apr 3, 1:05 PM
mollekopf added a reviewer: Restricted Project.Wed, Apr 3, 1:05 PM

There's a domain/hosts confusion. I went with hosts for the middleware because that also used for e.g. the TrustHosts middleware, but with domain in the config because that's what we use for the other configs ¯\_(ツ)_/¯

machniak requested changes to this revision.Thu, Apr 4, 10:54 AM
machniak subscribed.
machniak added inline comments.
src/config/app.php
87–88

I think services_domain is not used anymore and should be removed.

src/routes/api.php
210

It would be cleaner if we did 'allowedHosts:services' or just 'allowedHosts' here and read the config inside the middleware.

This revision now requires changes to proceed.Thu, Apr 4, 10:54 AM
mollekopf updated this revision to Diff 13470.Thu, Apr 4, 4:29 PM

addressed comments

Harbormaster completed remote builds in B47004: Diff 13470.Thu, Apr 4, 4:29 PM
machniak accepted this revision.Fri, Apr 5, 12:11 PM
This revision is now accepted and ready to land.Fri, Apr 5, 12:11 PM
Closed by commit rKa89b72e22ff2: AllowedHosts middleware to restrict allowed hosts (authored by mollekopf). · Explain WhyFri, Apr 5, 2:36 PM
This revision was automatically updated to reflect the committed changes.
mollekopf added a commit: rKa89b72e22ff2: AllowedHosts middleware to restrict allowed hosts.

Revision Contents
Changeset List

PathSize
src/
app/
Http/
1 line
Middleware/
26 lines
config/
15 lines
routes/
2 lines

Diff 13473

View Options

src/app/Http/Kernel.php

Loading...
View Options

src/app/Http/Middleware/AllowedHosts.php

Loading...
View Options

src/config/app.php

Loading...
View Options

src/routes/api.php

Loading...