You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@knox.apache.org by "Phil Zampino (JIRA)" <ji...@apache.org> on 2018/07/20 04:11:01 UTC
[jira] [Work started] (KNOX-1393) Update default whitelist
derivation strategy
[ https://issues.apache.org/jira/browse/KNOX-1393?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Work on KNOX-1393 started by Phil Zampino.
------------------------------------------
> Update default whitelist derivation strategy
> --------------------------------------------
>
> Key: KNOX-1393
> URL: https://issues.apache.org/jira/browse/KNOX-1393
> Project: Apache Knox
> Issue Type: Improvement
> Components: Server
> Affects Versions: 1.1.0
> Reporter: Phil Zampino
> Assignee: Phil Zampino
> Priority: Major
> Fix For: 1.1.0
>
>
> # Attempt to determine the domain from the X-Forwarded-Host header value
> # If domain could not be determined, attempt to determine the domain from the InetAddress.getLocalHost().getCanonicalHostName() value
> # If domain could not be determined, attempt to determine the domain from the requested host name
> # If the domain could be determined from any of these sources, then the default whitelist will be based on that domain
> # If the domain cannot be determined
> a. If the requested host name is NOT a variant of localhost, then the whitelist will be restricted to that specific host name
> b. Otherwise, the localhost whitelist will be the default
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)