You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@knox.apache.org by "Phil Zampino (JIRA)" <ji...@apache.org> on 2018/07/20 03:55:00 UTC
[jira] [Created] (KNOX-1393) Update default whitelist derivation
strategy
Phil Zampino created KNOX-1393:
----------------------------------
Summary: Update default whitelist derivation strategy
Key: KNOX-1393
URL: https://issues.apache.org/jira/browse/KNOX-1393
Project: Apache Knox
Issue Type: Improvement
Components: Server
Affects Versions: 1.1.0
Reporter: Phil Zampino
Assignee: Phil Zampino
Fix For: 1.1.0
# Attempt to determine the domain from the X-Forwarded-Host header value
# If domain could not be determined, attempt to determine the domain from the InetAddress.getLocalHost().getCanonicalHostName() value
# If domain could not be determined, attempt to determine the domain from the requested host name
# If the domain could be determined from any of these sources, then the default whitelist will be based on that domain
# If the domain cannot be determined
a. If the requested host name is NOT a variant of localhost, then the whitelist will be restricted to that specific host name
b. Otherwise, the localhost whitelist will be the default
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)