•  
      request #30001 Reject SVN requests without Authorization header as soon as possible
    Infos
    #30001
    Thomas Gerbet (tgerbet)
    2022-12-21 17:57
    2022-12-21 14:01
    31586
    Details
    Reject SVN requests without Authorization header as soon as possible

    Currently when a SVN request comes in it is forwarded to the PHP backend so we can check if it is authorized. This is not really needed when no Authorization header is provided since we know the request is going to be rejected. This sort of requests happen even in a legitimate situations, SVN clients tries to access resources without providing credentials first.

    We can save some resources by rejecting those requests directly at the nginx level to avoid reaching out to the PHP backend.

    SCM/Subversion
    All
    Empty
    • [ ] enhancement
    • [ ] internal improvement
    Empty
    Stage
    Thomas Gerbet (tgerbet)
    Closed
    2022-12-21
    Attachments
    Empty
    References

    Follow-ups

    User avatar
    Thomas Gerbet (tgerbet)2022-12-21 14:06

    • Original Submission
      Something went wrong, the follow up content couldn't be loaded
      Only formatting have been changed, you should switch to markup to see the changes
    • Status changed from Under implementation to Under review