Uploaded image for project: 'Crowd Data Center'
  1. Crowd Data Center
  2. CWD-541

Allow specification of Trusted Proxy Servers

XMLWordPrintable

    • Icon: Suggestion Suggestion
    • Resolution: Fixed
    • 1.4.1, 1.5
    • None
    • None

    • Our product teams collect and evaluate feedback from a number of different sources. To learn more about how we use customer feedback in the planning process, check out our new feature policy.

      Crowd should allow the definition of proxy servers whose X-Forwarded-For: it will trust.

      Original customer description:

      Our company policy is to run our Tomcat containers behind a Apache proxy. This proxy then forwards the requests to the Tomcat servers. In the case of Crowd it leads to an undesired situation. Crowd thinks the application authentication request comes from 127.0.0.1 instead of the external ip address of the application.
      In Crowd therefore I cannot validate an application on it's ip address. Which might result in security hazards.
      Is their another way to determine the original client ip-address instead of the proxy's ip-address?

              justen.stepka@atlassian.com Justen Stepka [Atlassian]
              780dfc3d-dfbf-4311-af44-62fc07eb7ce7 Deleted Account (Inactive)
              Votes:
              1 Vote for this issue
              Watchers:
              1 Start watching this issue

                Created:
                Updated:
                Resolved:

                  Estimated:
                  Original Estimate - Not Specified
                  Not Specified
                  Remaining:
                  Remaining Estimate - 0h
                  0h
                  Logged:
                  Time Spent - 10h
                  10h