kotovalexarian-likes-gitlab/gitlab-org--gitlab-foss
1
0
Fork 0
Code Releases Activity
gitlab-org--gitlab-foss/config
History
Douwe Maan 8a245b80a5 Merge branch 'rack-request-trusted-proxies' into 'master' 
Make Rack::Request use our trusted proxies when filtering IP addresses

## What does this MR do?

This allows us to control the trusted proxies while deployed in a private network.

## Are there points in the code the reviewer needs to double check?

If we want to limit what is impacted, we can do this specifically for the rack_attack request object.

## Why was this MR needed?

Normally Rack::Request will trust all private IPs as trusted proxies, which can cause problems if your users are connection on you network via private IP ranges.
    
Normally in a rails app this is handled by action_dispatch request, but rack_attack is specifically using the Rack::Request object instead.

## What are the relevant issue numbers?

Fixes https://gitlab.com/gitlab-org/gitlab-ce/issues/17550

## Does this MR meet the acceptance criteria?

- [x] [CHANGELOG](https://gitlab.com/gitlab-org/gitlab-ce/blob/master/CHANGELOG) entry added
- [ ] ~~[Documentation created/updated](https://gitlab.com/gitlab-org/gitlab-ce/blob/master/doc/development/doc_styleguide.md)~~
- [ ] ~~API support added~~
- Tests
  - [x] Added for this feature/bug
  - [x] All builds are passing
- [x] Conform by the [style guides](https://gitlab.com/gitlab-org/gitlab-ce/blob/master/CONTRIBUTING.md#style-guides)
- [ ] Branch has no merge conflicts with `master` (if you do - rebase it please)
- [ ] [Squashed related commits together](https://git-scm.com/book/en/Git-Tools-Rewriting-History#Squashing-Commits)


\cc @stanhu

See merge request !4958
2016-06-30 15:37:16 +00:00
..
environments Customize ActionMailer preview path 2016-05-25 16:56:06 -04:00
initializers Merge branch 'rack-request-trusted-proxies' into 'master' 2016-06-30 15:37:16 +00:00
locales Minor fixes after a final look at the diff. 2016-05-11 10:30:47 +05:30
application.rb Add precompilation for relevant assets. 2016-06-23 11:05:02 -06:00
aws.yml.example
boot.rb Enable the Rubocop DeprecatedClassMethods cop 2016-05-08 15:33:34 -06:00
database.yml.env Improving the "Environment variables" administration doc 2016-02-01 19:10:46 +01:00
database.yml.mysql
database.yml.postgresql
dependency_decisions.yml Loop all disks when displaying system info 2016-06-29 16:02:12 -04:00
environment.rb
gitlab.teatro.yml Refactor repository paths handling to allow multiple git mount points 2016-06-29 22:30:31 -04:00
gitlab.yml.example Refactor repository paths handling to allow multiple git mount points 2016-06-29 22:30:31 -04:00
license_finder.yml Resolve feedback. 2016-06-06 13:39:36 -06:00
mail_room.yml Don't require Gitlab::Redis in mail_room.yml if it's already defined 2016-06-10 13:44:45 +02:00
newrelic.yml Revert "Remove newrelic gem. Closes #12860" 2016-02-23 07:25:37 -08:00
resque.yml.example
routes.rb Enable Style/SpaceAfterColon Rubocop cops 2016-06-29 15:16:04 +02:00
secrets.yml.example
sidekiq.yml.example bug found by Charles Sibbald at Sky . Calls with patricio and Jacob confirmed this 2016-02-18 18:58:51 +00:00
unicorn.rb.example Fix typos and grammar 2016-02-10 12:43:19 +02:00
unicorn.rb.example.development