kerberos-docker icon indicating copy to clipboard operation
kerberos-docker copied to clipboard

Published 20 hours ago verified publisher icon kerberos-io

Security issue: /stream is not secured

Open h3rj4n opened this issue 6 years ago • 0 comments

I'm using this docker image to run the service. I want to open the service to the internet but the /stream URI is not secured using any password.

location /stream {
		proxy_set_header Authorization $http_authorization;
		proxy_read_timeout 1s;
		proxy_pass http://localhost:8889;
}

I don't have a solution right now. The 'normal' authentication uses PHP, the /stream URI proxies straight to the other service. There is no PHP in between, so no authentication.

h3rj4n avatar Jul 28 '18 15:07 h3rj4n