3 years ago · bf495f9019
--- a/.env.example
+++ b/.env.example
@@ -146,6 +146,12 @@ WEBAUTHN_ICON=
 
															 WEBAUTHN_USER_VERIFICATION=
														
 
															+# Use this setting to declare trusted proxied.
														
 
															+# Supported:
														
 
															+#   '*': to trust any proxy
														
 
															+#   A comma separated IP list: The list of proxies IP to trust
														
 
															+
														
 
															+TRUSTED_PROXIES=
														
 
															 # Leave the following configuration vars as is.
														
 
															 # Unless you like to tinker and know what you're doing.
														
--- a/Dockerfile
+++ b/Dockerfile
@@ -191,6 +191,11 @@ ENV \
 
															     #   'preferred' (default) : Will ask for user verification IF POSSIBLE
														
 
															     #   'discouraged' : Will NOT ask for user verification (for example, to minimize disruption to the user interaction flow)
														
 
															     WEBAUTHN_USER_VERIFICATION= \
														
 
															+    # Use this setting to declare trusted proxied.
														
 
															+    # Supported:
														
 
															+    #   '*': to trust any proxy
														
 
															+    #   A comma separated IP list: The list of proxies IP to trust
														
 
															+    TRUSTED_PROXIES= \
														
 
															     # Leave the following configuration vars as is.
														
 
															     # Unless you like to tinker and know what you're doing.
														
 
															     BROADCAST_DRIVER=log \
														
--- a/app/Http/Middleware/TrustProxies.php
+++ b/app/Http/Middleware/TrustProxies.php
@@ -25,4 +25,12 @@ class TrustProxies extends Middleware
 
															         Request::HEADER_X_FORWARDED_PORT |
														
 
															         Request::HEADER_X_FORWARDED_PROTO |
														
 
															         Request::HEADER_X_FORWARDED_AWS_ELB;
														
 
															+
														
 
															+    /**
														
 
															+     * TrustProxies constructor.
														
 
															+     */
														
 
															+    public function __construct()
														
 
															+    {
														
 
															+        $this->proxies = (string) config('2fauth.config.trustedProxies');
														
 
															+    }
														
 
															 }
														
--- a/config/2fauth.php
+++ b/config/2fauth.php
@@ -20,6 +20,7 @@ return [
 
															     'config' => [
														
 
															         'isDemoApp' => env('IS_DEMO_APP', false),
														
 
															+        'trustedProxies' => env('TRUSTED_PROXIES', null),
														
 
															     ],
														
 
															     /*
														
--- a/docker/docker-compose.yml
+++ b/docker/docker-compose.yml
@@ -91,6 +91,11 @@ services:
 
															       #   'preferred' (default) : Will ask for user verification IF POSSIBLE
														
 
															       #   'discouraged' : Will NOT ask for user verification (for example, to minimize disruption to the user interaction flow)
														
 
															       - WEBAUTHN_USER_VERIFICATION=
														
 
															+      # Use this setting to declare trusted proxied.
														
 
															+      # Supported:
														
 
															+      #   '*': to trust any proxy
														
 
															+      #   A comma separated IP list: The list of proxies IP to trust
														
 
															+      - TRUSTED_PROXIES=
														
 
															       # Leave the following configuration vars as is.
														
 
															       # Unless you like to tinker and know what you're doing.
														
 
															       - BROADCAST_DRIVER=log