pando85
4fc99d4a6f
Fix audit issue logging by default peer address ( #1485 )
...
* Fix audit issue logging by default peer address
By default log format include remote address that is taken from headers.
This is very easy to replace making log untrusted.
Changing default log format value `%a` to peer address we are getting
this trusted data always. Also, remote address option is maintianed and
relegated to `%{r}a` value.
Related kanidm/kanidm#191 .
* Rename peer/remote to remote_addr/realip_remote_addr
Change names to avoid naming confusions. I choose this accord to Nginx
variables and
[ngx_http_realip_module](https://nginx.org/en/docs/http/ngx_http_realip_module.html ).
Add more specific documentation about security concerns of using Real IP
in logger.
* Rename security advertise header in doc
* Add fix audit issue logging by default peer adress to changelog
Co-authored-by: Rob Ede <robjtede@icloud.com>
2020-05-15 09:07:27 +09:00
Nikolay Kim
205a964d8f
upgrade to tokio 0.2
2019-12-05 23:35:43 +06:00
Feiko Nanninga
88110ed268
Add security note to ConnectionInfo::remote() ( #1158 )
2019-11-14 08:32:47 +06:00
Nikolay Kim
5169d306ae
update ConnectionInfo.remote() doc string
2019-09-27 07:03:12 +06:00
Nikolay Kim
4092c7f326
clippy warnings
2019-07-17 15:08:30 +06:00
Nikolay Kim
baaa7b3fbb
Replace ClonableService with local copy
2019-07-17 13:55:44 +06:00
Ravi Shankar
32718b7e31
Expose factory traits and some clippy fixes ( #983 )
2019-07-17 12:58:42 +06:00
Nikolay Kim
420d3064c5
Add .peer_addr() #744
2019-04-16 10:11:38 -07:00
Nikolay Kim
748289f0ff
use custom headers map; more optimizations
2019-04-06 15:02:02 -07:00
Nikolay Kim
4a4826b23a
cleanup doc strings and clippy warnings
2019-03-16 21:35:02 -07:00
Nikolay Kim
54678308d0
propogate app config with http request; add tests for url_for
2019-03-09 14:06:24 -08:00
Nikolay Kim
2d7293aaf8
copy actix-web2
2019-03-01 22:51:32 -08:00
Stanislav Tkach
3b536ee96c
Use old clippy attributes syntax ( #562 )
2018-11-01 11:14:48 +03:00
Nikolay Kim
127af92541
clippy warnings
2018-10-01 21:16:56 -07:00
Nikolay Kim
1716380f08
clippy fmt
2018-08-23 09:48:01 -07:00
Nikolay Kim
6fd686ef98
cleanup warnings
2018-07-04 21:01:27 +06:00
Nikolay Kim
fec6047ddc
refactor HttpRequest mutability
2018-07-02 23:35:32 +06:00
Nikolay Kim
ea118edf56
do not use references in ConnectionInfo
2018-06-18 00:01:41 +06:00
Nikolay Kim
45e9aaa462
rustfmt 0.7
2018-05-17 12:20:20 -07:00
Nikolay Kim
c72d1381a6
clippy warnings
2018-04-29 09:09:08 -07:00
Nikolay Kim
de49796fd1
clippy warnings; fmt
2018-04-28 22:55:47 -07:00
Nikolay Kim
113f5ad1a8
add rustfmt config
2018-04-13 16:02:01 -07:00
Alexander Andreev
2d80c5053d
spelling check
2018-03-24 09:35:52 +03:00
Nikolay Kim
a7bf635158
unify headers and body processing for client response and server request
2018-02-27 15:03:28 -08:00
Nikolay Kim
72aa2d9eae
clippy warnings
2018-02-26 14:33:56 -08:00
Nikolay Kim
dd3a2aa68a
add HttpServer::server_hostname method
2017-12-26 14:36:03 -08:00
Nikolay Kim
0f75d066f2
simplify Application creation; update url dispatch guide section
2017-12-11 14:16:29 -08:00
Nikolay Kim
9043e7286d
tests for default predicates
2017-12-08 12:51:44 -08:00
Nikolay Kim
774bfc0a86
use server settings for scheme and host values
2017-12-08 09:48:53 -08:00
Nikolay Kim
20af8822fd
cleanup
2017-12-05 21:53:00 -08:00
Nikolay Kim
d7e65b6212
add ConnectionInfo tests
2017-12-05 21:41:30 -08:00
Nikolay Kim
c3de32c3b3
added ConnectionInfo
2017-12-05 17:09:15 -08:00