Uploaded image for project: 'Blesta Core'
  1. Blesta Core
  2. CORE-2915

Shared Login: Allow IPs from the x-forwarded-for header

    Details

    • Type: Improvement
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 4.5.0-b1
    • Component/s: None
    • Labels:
      None

      Description

      The Shared Login plugin references a user's IP address from the server's REMOTE_ADDR, but this is not reliable in cases where the server is behind a proxy.

      Update references to the IP address and REMOTE_ADDR usage to use Blesta's internal Requestor service to determine the IP address of the user.

        Issue Links

          Activity

          There are no comments yet on this issue.

            People

            • Assignee:
              tyson Tyson Phillips (Inactive)
              Reporter:
              tyson Tyson Phillips (Inactive)
            • Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved:
                Fix Release Date:
                31/Jan/19

                Time Tracking

                Estimated:
                Original Estimate - Not Specified
                Not Specified
                Remaining:
                Remaining Estimate - 0 minutes
                0m
                Logged:
                Time Spent - 30 minutes
                30m

                  Agile