Skip to content
This repository was archived by the owner on Dec 20, 2018. It is now read-only.

Change RequireHeaderSymmetry default to false, improve consistency. #226

Merged
merged 1 commit into from
Apr 22, 2017
Merged

Change RequireHeaderSymmetry default to false, improve consistency. #226

merged 1 commit into from
Apr 22, 2017

Conversation

Tratcher
Copy link
Member

#190 RequireHeaderSymmetry is a paranoid level of security for forwarded headers that is broken in too many real world scenarios (including Azure). Changing the default to false.

When I changed the default I noticed some inconsistent handling of invalid IPs and cleaned that up a little.

Will follow up by removing the azure hack:
https://github.com/aspnet/IISIntegration/blob/ce3c71b5b3499e83853d9ef1ad59e1e13e65c685/src/Microsoft.AspNetCore.Server.IISIntegration/WebHostBuilderIISExtensions.cs#L61-L66

@Tratcher Tratcher mentioned this pull request Apr 21, 2017
Merged
@Tratcher Tratcher self-assigned this Apr 21, 2017
@Tratcher Tratcher added this to the 2.0.0-preview1 milestone Apr 21, 2017
@Tratcher Tratcher merged commit 1ade06f into dev Apr 22, 2017
@Tratcher Tratcher deleted the tratcher/forwarded branch April 22, 2017 02:01
@mikes-gh
Copy link

Than ks for this. This is a good move. I always have to set it to false as it doesn't work with NGINX or ARR.

@kspearrin kspearrin mentioned this pull request Jul 21, 2017
Closed
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers

@JunTaoLuo JunTaoLuo JunTaoLuo approved these changes

@BrennanConroy BrennanConroy Awaiting requested review from BrennanConroy

Assignees

@Tratcher Tratcher

Labels
cla-already-signed
Projects
None yet
Milestone
2.0.0-preview1
Development

Successfully merging this pull request may close these issues.
4 participants
@Tratcher @mikes-gh @JunTaoLuo @dnfclas