stable

Hide SSRF filter bypass

This not supposed to be used, it should not be part of the public "API". This flag is likely to be removed later once we have gained enough confidence. In a "normal" situation disabling the filter is not something that should be done, adding everything (`0.0.0.0/0,::/0`) to the allow list is preferable since at least logs are collected. Part of: request #31580: Filter outbound HTTP requests Change-Id: If544077bd0cd6f7b7945e0d7a8458d8d0e6c8d7b

+2 −0

Author

Thomas Gerbet (tgerbet) 2023-05-02 09:33

Committer

Thomas Gerbet (tgerbet) 2023-05-02 09:33

Hash 78a1132aaf534983148bfa5718b902e772fedd5f

Parent 1e99e2892f7d2d1e4510ae0beeeb9f49e09abfc6

Reference git #tuleap/stable/78a1132aaf534983148bfa5718b902e772fedd5f

Modified Files

List

Side by side diff

Inline diff

	Name
M	src/common/Http/Client/OutboundHTTPRequestProxy.php	+2	−0	Go to diff View file

Public

stable

Clone or download

Hide SSRF filter bypass

Modified Files