Fabio/webssh2
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

change the ipfiltering to be based on x-forwarded for

Browse source
This commit is contained in:
Tom Broughton 2023-10-27 14:08:55 +01:00
parent 78761eb37e
commit 30914719aa
1 changed files with 14 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

16
app/server/app.js
View file

@ -51,8 +51,20 @@ app.get('/headers', function (req, res) {
console.log(req.headers); console.log(req.headers);
res.status(200).send('success'); res.status(200).send('success');
}); });
//restrict access to anything else via ip addresses //restrict access to anything else via ip addresses based on x-forwarded for
//if (config.ipfilter.allowed_ips.length > 0) app.use(ipfilter(config.ipfilter.allowed_ips, { mode: 'allow' })) let clientIp = function(req, res) {
return req.headers['x-forwarded-for'] ? (req.headers['x-forwarded-for']).split(',')[0] : ""
};
if(config.ipfilter.allowed_ips.length > 0){
app.use(
ipFilter({
detectIp: clientIp,
forbidden: 'You are not authorized to access this page.',
filter: allowlist_ips,
})
);
}
if (config.accesslog) app.use(logger('common')); if (config.accesslog) app.use(logger('common'));
app.disable('x-powered-by'); app.disable('x-powered-by');
app.use(favicon(path.join(publicPath, 'favicon.ico'))); app.use(favicon(path.join(publicPath, 'favicon.ico')));