Skip to content
Snippets Groups Projects
Commit fab282b5 authored by Dominik Hebeler's avatar Dominik Hebeler
Browse files

fixes trustproxies

parent adf63136
No related branches found
No related tags found
No related merge requests found
<?php
namespace App\Http\Middleware;
use Closure;
use Illuminate\Http\Request;
use Symfony\Component\HttpFoundation\Response;
class StartSession extends \Illuminate\Session\Middleware\StartSession
{
/**
* Handle an incoming request.
*
* @param \Closure(\Illuminate\Http\Request): (\Symfony\Component\HttpFoundation\Response) $next
*/
public function handleStatefulRequest($request, $session, Closure $next): Response
{
return $next($request);
}
}
<?php
namespace App\Http\Middleware;
use Illuminate\Http\Middleware\TrustProxies as Middleware;
use Illuminate\Http\Request;
class TrustProxies extends Middleware
{
/**
* The trusted proxies for this application.
*
* @var array<int, string>|string|null
*/
protected $proxies = [
'10.0.0.0/8',
'172.16.0.0/12',
'192.168.0.0/16',
'144.76.113.134',
'144.76.88.77',
'167.233.15.225',
];
/**
* The headers that should be used to detect proxies.
*
* @var int
*/
protected $headers =
Request::HEADER_X_FORWARDED_FOR |
Request::HEADER_X_FORWARDED_HOST |
Request::HEADER_X_FORWARDED_PORT |
Request::HEADER_X_FORWARDED_PROTO |
Request::HEADER_X_FORWARDED_AWS_ELB;
}
......@@ -17,6 +17,14 @@
)
->withMiddleware(function (Middleware $middleware) {
$middleware->web(remove: [ValidateCsrfToken::class, StartSession::class, ShareErrorsFromSession::class, AddQueuedCookiesToResponse::class]);
$middleware->trustProxies(at: [
'10.0.0.0/8',
'172.16.0.0/12',
'192.168.0.0/16',
'144.76.113.134',
'144.76.88.77',
'167.233.15.225',
]);
})
->withExceptions(function (Exceptions $exceptions) {
//
......
0% Loading or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment