libretic
/
etherpad-lite
5
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

updated to use settings 

updated handler/SocketIORouter.js to use new setting
updated hooks/express.js to use new setting
updated utils/Settings.js to accept new setting
updated settings.json.template so new setting is present
This commit is contained in:
Spruce (Felix Fichte) 2013-04-24 12:19:41 +02:00
parent 6ea5efbcc3
commit fb0bc31056
4 changed files with 20 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
settings.json.template
View File

@ -78,7 +78,10 @@
/* Require authorization by a module, or a user with is_admin set, see below. */ /* Require authorization by a module, or a user with is_admin set, see below. */
"requireAuthorization": false, "requireAuthorization": false,
/*when you use NginX or another proxy/ load-balancer set this to true*/
"trustProxy": false,
/* Users for basic authentication. is_admin = true gives access to /admin. /* Users for basic authentication. is_admin = true gives access to /admin.
If you do not uncomment this, /admin will not be available! */ If you do not uncomment this, /admin will not be available! */
/* /*

13
src/node/handler/SocketIORouter.js
View File

@ -23,6 +23,7 @@ var ERR = require("async-stacktrace");
var log4js = require('log4js'); var log4js = require('log4js');
var messageLogger = log4js.getLogger("message"); var messageLogger = log4js.getLogger("message");
var securityManager = require("../db/SecurityManager"); var securityManager = require("../db/SecurityManager");
var settings = require('../utils/Settings');
/** /**
* Saves all components * Saves all components
@ -55,12 +56,12 @@ exports.setSocketIO = function(_socket)
socket.sockets.on('connection', function(client) socket.sockets.on('connection', function(client)
{ {
if(client.handshake.headers['x-forwarded-for'] === undefined){ if(settings.trustProxy && client.handshake.headers['x-forwarded-for'] !== undefined){
client.set('remoteAddress', client.handshake.address.address); client.set('remoteAddress', client.handshake.headers['x-forwarded-for']);
} }
else{ else{
client.set('remoteAddress', client.handshake.headers['x-forwarded-for']); client.set('remoteAddress', client.handshake.address.address);
} }
var clientAuthorized = false; var clientAuthorized = false;
//wrap the original send function to log the messages //wrap the original send function to log the messages

4
src/node/hooks/express.js
View File

@ -75,6 +75,10 @@ exports.restartServer = function () {
next(); next();
}); });
if(settings.trustProxy){
app.enable('trust proxy');
}
app.configure(function() { app.configure(function() {
hooks.callAll("expressConfigure", {"app": app}); hooks.callAll("expressConfigure", {"app": app});
}); });

5
src/node/utils/Settings.js
View File

@ -119,6 +119,11 @@ exports.logconfig = { appenders: [{ type: "console" }]};
*/ */
exports.sessionKey = false; exports.sessionKey = false;
/*
* Trust Proxy, whether or not trust the x-forwarded-for header.
*/
exports.trustProxy = false;
/* This setting is used if you need authentication and/or /* This setting is used if you need authentication and/or
* authorization. Note: /admin always requires authentication, and * authorization. Note: /admin always requires authentication, and
* either authorization by a module, or a user with is_admin set */ * either authorization by a module, or a user with is_admin set */