ckan-service-provider icon indicating copy to clipboard operation
ckan-service-provider copied to clipboard

Published 20 hours ago verified publisher icon ckan

Don't use ProxyFix

Open seanh opened this issue 10 years ago • 0 comments

ckanserviceprovider always uses the werkzeug proxyfix middleware:

https://github.com/ckan/ckan-service-provider/blob/master/ckanserviceprovider/web.py#L130

(apparently to make it work with gunicorn: https://github.com/ckan/ckan-service-provider/commit/99b675d68980e9aa44b27ad8569724651f4e1fa0)

But the docs say:

Do not use this middleware in non-proxy setups for security reasons.

Should we be using this?

seanh avatar Nov 12 '14 11:11 seanh