diff options
author | Bert JW Regeer <bertjw@regeer.org> | 2018-12-31 13:48:45 -0700 |
---|---|---|
committer | Bert JW Regeer <bertjw@regeer.org> | 2018-12-31 13:48:45 -0700 |
commit | f986443ecace551917ac1a3074f12599ccf87564 (patch) | |
tree | a531ff7f225e56d892b81795b9d28e232325700b | |
parent | 01ae68065f46b7b04950255882f129d770a9645b (diff) | |
download | waitress-f986443ecace551917ac1a3074f12599ccf87564.tar.gz |
Add CHANGES.txt for #224
-rw-r--r-- | CHANGES.txt | 15 |
1 files changed, 13 insertions, 2 deletions
diff --git a/CHANGES.txt b/CHANGES.txt index 1056b47..e8413da 100644 --- a/CHANGES.txt +++ b/CHANGES.txt @@ -1,9 +1,20 @@ -Unreleased ----------- +1.2.0b1 (2018-12-31) +-------------------- + +Happy New Year! Features ~~~~~~~~ +- Setting the ``trusted_proxy`` setting to ``'*'`` (wildcard) will allow all + upstreams to be considered trusted proxies, thereby allowing services behind + Cloudflare/ELBs to function correctly whereby there may not be a singular IP + address that requests are received from. + + Using this setting is potentially dangerous if your server is also available + from anywhere on the internet, and further protections should be used to lock + down access to Waitress. See https://github.com/Pylons/waitress/pull/224 + - Waitress has increased its support of the X-Forwarded-* headers and includes Forwarded (RFC7239) support. This may be used to allow proxy servers to influence the WSGI environment. See |