Expand description

Trillium handler for x-forwarded-* / forwarded

This simple handler rewrites the request’s host, secure setting, and peer ip based on headers added by a trusted reverse proxy.

The specific headers that are understood by this handler are:

There are several ways of specifying when to trust a peer ip address, and the narrowest possible trust rules should be used for a given deployment so as to decrease the chance for a threat actor to generate a request with forwarded headers that we mistakenly trust.