[HSTTWO-3912] Cutomizability in HstRequestUtils#getRemoteAddrs() - Issues

XML

Word

Printable

Details

Type: Improvement
Status: Closed
Priority: Top
Resolution: Fixed
Affects Version/s: 4.1.1
Fix Version/s: 4.2.0
Component/s: None
Labels:
- PatchAvailable

Description

At the moment, HstRequestUtils#getRemoteAddrs() checks only X-Forwarded-For header values.
This makes it very difficult to test out GEO IP based logic (such as hippo relevance GeoIPCollector) in non-production environment if there are multiple reverse proxy servers. If you want to fix it in Infrastructure level, then you end up with a lot of complex settings such as IP whitelisting, public/private server considerations such SEO perspective, security, etc, etc, causing a lot of inter-dependencies between multiple parties unnecessarily.
This is not so convenient in testing/validation in non-production environment.
So, I'd like to suggest an improvement in HstRequestUtils#getRemoteAddrs() to be able to inject some custom logic (e.g, different header value) in projects if needed.

Attachments

Issue Links

relates to

CMS-10596 Cutomizability in org.hippoecm.frontend.util.RequestUtils#getRemoteAddrs()

Closed

HSTTWO-4204 Support multiple header names in http-forwarded-for-header context init parameter

Closed

Activity

People

Assignee:: Unassigned

Reporter:: Woonsan Ko (Inactive)

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 02/Feb/17 7:53 PM

Updated:: 03/Jan/18 2:59 PM

Resolved:: 03/Jan/18 2:59 PM