25f91a7b19
... so that operators can hide the healthcheck endpoint, which is usually deployed without any auth mechanism, from users accessing APIs through front-end load balancer or reverse proxy. Note that this behavior is optional and can be enabled by the new option. Change-Id: Ib87da1b3d231dea44939686af544db101d68e179
14 lines
437 B
YAML
14 lines
437 B
YAML
---
|
|
features:
|
|
- |
|
|
The new ``[healthcheck] ignore_proxied_requests`` option has been added.
|
|
When this option is set to true, the healthcheck middleware ignores
|
|
requests with any of the following headers, which indicates that
|
|
the requests came through a reverse proxy or a load balancer.
|
|
|
|
- ``x-forwarded``
|
|
- ``x-forwarded-proto``
|
|
- ``x-forwarded-host``
|
|
- ``x-forwarded-for``
|
|
- ``x-forwarded-prefix``
|