1
0
Fork 0
selfhostblocks/ttrss/normalize-headers.nix

56 lines
1.3 KiB
Nix
Raw Normal View History

2022-09-14 20:46:14 -07:00
{ stdenv
, pkgs
, utils
}:
{ configDir ? "/etc/php"
, configFile ? "normalize-headers.php"
, debug ? false
2022-09-14 20:46:14 -07:00
}:
utils.mkConfigFile {
name = configFile;
dir = configDir;
content = ''
<?php
$trustedProxies = array(
'127.0.0.1',
'@'
);
# phpinfo(INFO_VARIABLES);
2022-09-14 20:46:14 -07:00
if (isSet($_SERVER['REMOTE_ADDR'])) {
$remote = $_SERVER['REMOTE_ADDR'];
$allowedHeaders = array(
'HTTP_X_FORWARDED_FOR' => 'REMOTE_ADDR',
'HTTP_X_REAL_IP' => 'REMOTE_HOST',
'HTTP_X_FORWARDED_PORT' => 'REMOTE_PORT',
'HTTP_X_FORWARDED_HTTPS' => 'HTTPS',
'HTTP_X_FORWARDED_SERVER_ADDR' => 'SERVER_ADDR',
'HTTP_X_FORWARDED_SERVER_NAME' => 'SERVER_NAME',
'HTTP_X_FORWARDED_SERVER_PORT' => 'SERVER_PORT',
'HTTP_X_FORWARDED_PREFERRED_USERNAME' => 'REMOTE_USER',
);
if(in_array($remote, $trustedProxies)) {
foreach($allowedHeaders as $header => $serverVar) {
if(isSet($_SERVER[$header])) {
if(isSet($_SERVER[$serverVar])) {
$_SERVER["ORIGINAL_$serverVar"] = $_SERVER[$serverVar];
}
$_SERVER[$serverVar] = explode(',', $_SERVER[$header], 2)[0];
}
}
}
}
'' + (if !debug then "" else ''
trigger_error(print_r($_SERVER, true), E_USER_WARNING);
'');
2022-09-14 20:46:14 -07:00
}