aboutsummaryrefslogtreecommitdiffstats
path: root/actionpack/lib/action_dispatch/middleware/block_untrusted_ips.rb
diff options
context:
space:
mode:
Diffstat (limited to 'actionpack/lib/action_dispatch/middleware/block_untrusted_ips.rb')
-rw-r--r--actionpack/lib/action_dispatch/middleware/block_untrusted_ips.rb25
1 files changed, 0 insertions, 25 deletions
diff --git a/actionpack/lib/action_dispatch/middleware/block_untrusted_ips.rb b/actionpack/lib/action_dispatch/middleware/block_untrusted_ips.rb
deleted file mode 100644
index 8aed0c45a6..0000000000
--- a/actionpack/lib/action_dispatch/middleware/block_untrusted_ips.rb
+++ /dev/null
@@ -1,25 +0,0 @@
-module ActionDispatch
- class BlockUntrustedIps
- class SpoofAttackError < StandardError ; end
-
- def initialize(app)
- @app = app
- end
-
- def call(env)
- if @env['HTTP_X_FORWARDED_FOR'] && @env['HTTP_CLIENT_IP']
- remote_ips = @env['HTTP_X_FORWARDED_FOR'].split(',')
-
- unless remote_ips.include?(@env['HTTP_CLIENT_IP'])
- http_client_ip = @env['HTTP_CLIENT_IP'].inspect
- http_forwarded_for = @env['HTTP_X_FORWARDED_FOR'].inspect
-
- raise SpoofAttackError, "IP spoofing attack?!\n " \
- "HTTP_CLIENT_IP=#{http_client_ip}\n HTTP_X_FORWARDED_FOR=http_forwarded_for"
- end
- end
-
- @app.call(env)
- end
- end
-end \ No newline at end of file
generated by cgit v1.2.3 (git 2.25.1) at 2024-07-16 11:15:33 +0000