CERBERUS/caddy
1
0
Fork 0
mirror of https://github.com/caddyserver/caddy.git synced 2026-06-28 04:41:41 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

Merge 9da37e57a3 into 13a4c3f43c

Browse source
This commit is contained in:
Lars Kiesow 2026-06-22 23:17:27 +00:00 committed by GitHub
commit f8eafc2e56
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
1 changed files with 6 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files

8
modules/caddyhttp/proxyprotocol/listenerwrapper.go
View file

@ -41,12 +41,16 @@ type ListenerWrapper struct {
Timeout caddy.Duration `json:"timeout,omitempty"`
// Allow is an optional list of CIDR ranges to
// allow/require PROXY headers from.
// allow PROXY headers from.
// Note that while the PROXY protocol is allowed,
// it is not required to be used by clients in this range.
Allow []string `json:"allow,omitempty"`
allow []netip.Prefix
// Deny is an optional list of CIDR ranges to
// deny PROXY headers from.
// Connections without PROXY headers from clients
// in this range are still allowed.
Deny []string `json:"deny,omitempty"`
deny []netip.Prefix
@ -63,7 +67,7 @@ type ListenerWrapper struct {
//
// - USE: address from PROXY header
//
// - REJECT: connection when PROXY header is sent
// - REJECT: connection when PROXY header is sent.
// Note: even though the first read on the connection returns an error if
// a PROXY header is present, subsequent reads do not. It is the task of
// the code using the connection to handle that case properly.