etherpad-lite

mirror of https://github.com/ether/etherpad-lite.git synced 2025-04-22 08:26:16 -04:00

History

webzwo0i ceb09ce99a security: Support proxy with rate limiting and include CI test coverage for nginx rev proxy (#4373 ) Previously Etherpad would not pass the correct client IP address through and this caused the rate limiter to limit users behind reverse proxies. This change allows Etherpad to use a client IP passed from a reverse proxy. Note to devs: This header can be spoofed and spoofing the header could be used in an attack. To mitigate additional steps should be taken by Etherpad site admins IE doing rate limiting at proxy. This only really applies to large scale deployments but it's worth noting.		2020-10-01 10:39:01 +01:00
..
APIHandler.js	Feature: Copy Pad without history (#4295 )	2020-09-16 19:24:09 +01:00
ExportHandler.js	Fix readOnly pad export	2020-09-26 21:47:35 +01:00
ImportHandler.js	async-ify more functions, and await completion	2020-09-22 14:10:44 +01:00
PadMessageHandler.js	security: Support proxy with rate limiting and include CI test coverage for nginx rev proxy (#4373 )	2020-10-01 10:39:01 +01:00
SocketIORouter.js	PadMessageHandler: Avoid redundant access checks	2020-09-26 18:32:22 +01:00