Uploaded image for project: 'Blesta Core'
  1. Blesta Core
  2. CORE-2915

Shared Login: Allow IPs from the x-forwarded-for header

        Details

        • Type: Improvement
        • Status: Closed
        • Priority: Major
        • Resolution: Fixed
        • Affects Version/s: None
        • Fix Version/s: 4.5.0-b1
        • Component/s: None
        • Labels:
          None

          Description

          The Shared Login plugin references a user's IP address from the server's REMOTE_ADDR, but this is not reliable in cases where the server is behind a proxy.

          Update references to the IP address and REMOTE_ADDR usage to use Blesta's internal Requestor service to determine the IP address of the user.

            Issue Links

            is blocked by

            Improvement - An improvement or enhancement to an existing feature or task. CORE-2349 Add support for the x-forwarded-for header for load balanced environments

            • Major - Major loss of function.
            • Closed

              Activity

              There are no comments yet on this issue.

                People

                • Assignee:
                  tyson Tyson Phillips (Inactive)
                  Reporter:
                  tyson Tyson Phillips (Inactive)
                • Votes:
                  0 Vote for this issue
                  Watchers:
                  1 Start watching this issue

                  Dates

                  • Created:
                    Updated:
                    Resolved:
                    Fix Release Date:
                    31/Jan/19

                    Time Tracking

                    Estimated:
                    Original Estimate - Not Specified
                    Not Specified
                    Remaining:
                    Remaining Estimate - 0 minutes
                    0m
                    Logged:
                    Time Spent - 30 minutes
                    30m

                      Agile