rack-cloudflare 1.0.4 → 1.0.5
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/README.md +6 -0
- data/lib/rack/cloudflare/headers.rb +5 -1
- data/lib/rack/cloudflare/version.rb +1 -1
- metadata +2 -2
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: d4a6cbd7a1396b2daee2e5f0e4ed3bb7a77800255eedb6d162c26b9f00a6f8e7
|
|
4
|
+
data.tar.gz: 1f17b7d667512c429fd0168bb32acb6c7c8b23bae057908ef93920ca94af5b01
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 575efb62ae08e5eed7d35112f4fba522aa58beee80314c33789110aa4cddc4fa1755fc60bedc2d3c1851f01567f42219465b3fc16aad0c9148b432034cfae5aa
|
|
7
|
+
data.tar.gz: 5cd9b90a95f4c02af706bb76f573c7fcb178a3ded661775041166b36cfbd60ca958d8829dc14cc87f46fb1e36c9cc3e87f9d0d6951b90cc5d476f4a50b4a2b97
|
data/README.md
CHANGED
|
@@ -79,6 +79,12 @@ Rack::Cloudflare::Headers.original_remote_addr = 'BACKUP_REMOTE_ADDR'
|
|
|
79
79
|
Rack::Cloudflare::Headers.original_forwarded_for = 'BACKUP_FORWARDED_FOR'
|
|
80
80
|
```
|
|
81
81
|
|
|
82
|
+
You can set the `HTTP_X_FORWARDED_FOR` header to exactly `HTTP_CF_CONNECTING_IP`, which effectively removes proxies.
|
|
83
|
+
|
|
84
|
+
```ruby
|
|
85
|
+
Rack::Cloudflare::Headers.remove_proxies = true
|
|
86
|
+
```
|
|
87
|
+
|
|
82
88
|
See _Toolkits: Rewrite Headers_ for alternative uses.
|
|
83
89
|
|
|
84
90
|
### Logging
|
|
@@ -25,7 +25,7 @@ module Rack
|
|
|
25
25
|
ALL.map { |h| const_set h, h.to_s.freeze }.freeze
|
|
26
26
|
|
|
27
27
|
class << self
|
|
28
|
-
attr_accessor :backup, :original_remote_addr, :original_forwarded_for
|
|
28
|
+
attr_accessor :backup, :remove_proxies, :original_remote_addr, :original_forwarded_for
|
|
29
29
|
|
|
30
30
|
def trusted?(headers)
|
|
31
31
|
Headers.new(headers).trusted?
|
|
@@ -106,6 +106,9 @@ module Rack
|
|
|
106
106
|
# it was present in the original request.
|
|
107
107
|
# See: https://support.cloudflare.com/hc/en-us/articles/200170986-How-does-Cloudflare-handle-HTTP-Request-headers-
|
|
108
108
|
headers[HTTP_X_FORWARDED_FOR] = "#{connecting_ip}, #{cloudflare_ip}" if forwarded_for.none?
|
|
109
|
+
|
|
110
|
+
# Avoid getting the wrong IP by removing proxies
|
|
111
|
+
headers[HTTP_X_FORWARDED_FOR] = connecting_ip.to_s if connecting_ip && Headers.remove_proxies
|
|
109
112
|
end
|
|
110
113
|
end
|
|
111
114
|
|
|
@@ -129,6 +132,7 @@ module Rack
|
|
|
129
132
|
### Configure
|
|
130
133
|
|
|
131
134
|
self.backup = true
|
|
135
|
+
self.remove_proxies = false
|
|
132
136
|
self.original_remote_addr = 'ORIGINAL_REMOTE_ADDR'
|
|
133
137
|
self.original_forwarded_for = 'ORIGINAL_FORWARDED_FOR'
|
|
134
138
|
end
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: rack-cloudflare
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 1.0.
|
|
4
|
+
version: 1.0.5
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Joel Van Horn
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: exe
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2018-
|
|
11
|
+
date: 2018-11-19 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: bundler
|