Add fix to ensure that X-Client-IP header is dropped when is not a trusted header.

author: Graham Dumpleton <Graham.Dumpleton@gmail.com> 2022-07-18 12:29:38 +1000
committer: Graham Dumpleton <Graham.Dumpleton@gmail.com> 2022-07-18 12:29:38 +1000
commit: af3c0c2736bc0b0b01fa0f0aad3c904b7fa9c751 (patch)
tree: 43df45e20357ba991aff3416c1a7f2f018a4a94a
parent: f4e5138faaccf67971ad4b41cfeeda9ca9842623 (diff)
download: mod_wsgi-af3c0c2736bc0b0b01fa0f0aad3c904b7fa9c751.tar.gz
1 files changed, 1 insertions, 0 deletions
diff --git a/src/server/mod_wsgi.c b/src/server/mod_wsgi.c
index 0123472..a4b49df 100644
--- a/src/server/mod_wsgi.c
+++ b/src/server/mod_wsgi.c
@@ -14055,6 +14055,7 @@ static void wsgi_process_proxy_headers(request_rec *r)
             name = ((const char**)trusted_proxy_headers->elts)[i];
 
             if (!strcmp(name, "HTTP_X_FORWARDED_FOR") ||
+                     !strcmp(name, "HTTP_X_CLIENT_IP") ||
                      !strcmp(name, "HTTP_X_REAL_IP")) {
 
                 match_client_header = 1;
author	Graham Dumpleton <Graham.Dumpleton@gmail.com>	2022-07-18 12:29:38 +1000
committer	Graham Dumpleton <Graham.Dumpleton@gmail.com>	2022-07-18 12:29:38 +1000
commit	af3c0c2736bc0b0b01fa0f0aad3c904b7fa9c751 (patch)
tree	43df45e20357ba991aff3416c1a7f2f018a4a94a
parent	f4e5138faaccf67971ad4b41cfeeda9ca9842623 (diff)
download	mod_wsgi-af3c0c2736bc0b0b01fa0f0aad3c904b7fa9c751.tar.gz