@@ -63,7 +63,8 @@ the CIDR notation ``10.0.0.0/8``. For more details, see the
63
63
:ref: `framework.trusted_proxies <reference-framework-trusted-proxies >` option.
64
64
65
65
You are also saying that you trust that the proxy does not send conflicting
66
- headers, e.g. sending both X-Forwarded-For and Forwarded in the same request.
66
+ headers, e.g. sending both ``X-Forwarded-For `` and ``Forwarded `` in the same
67
+ request.
67
68
68
69
That's it! Symfony will now look for the correct headers to get information
69
70
like the client's IP address, host, port and whether the request is
@@ -100,13 +101,13 @@ other information.
100
101
101
102
.. _cookbook-request-untrust-header :
102
103
103
- My Reverse Proxy Sends X-Forwarded-For but does not Filter the Forwarded Header
104
+ My Reverse Proxy Sends X-Forwarded-For but Does not Filter the Forwarded Header
104
105
-------------------------------------------------------------------------------
105
106
106
- Many popular proxy implementations do not yet support the Forwarded header and
107
- do not filter it by default. Ideally, you would configure this
108
- in your proxy. If this is not possible, you can tell Symfony to distrust
109
- the Forwarded header, while still trusting your proxy's X-Forwarded-For header.
107
+ Many popular proxy implementations do not yet support the `` Forwarded `` header
108
+ and do not filter it by default. Ideally, you would configure this in your
109
+ proxy. If this is not possible, you can tell Symfony to distrust the `` Forwarded ``
110
+ header, while still trusting your proxy's `` X-Forwarded-For `` header.
110
111
111
112
This is done inside of your front controller::
112
113
@@ -119,7 +120,7 @@ This is done inside of your front controller::
119
120
// ...
120
121
121
122
Configuring the proxy server trust is very important, as not doing so will
122
- malicious users to "spoof" their IP address.
123
+ allow malicious users to "spoof" their IP address.
123
124
124
125
My Reverse Proxy Uses Non-Standard (not X-Forwarded) Headers
125
126
------------------------------------------------------------
0 commit comments