This simple handler rewrites the request’s host, secure setting, and peer ip based on headers added by a trusted reverse proxy.
The specific headers that are understood by this handler are:
There are several ways of specifying when to trust a peer ip address, and the narrowest possible trust rules should be used for a given deployment so as to decrease the chance for a threat actor to generate a request with forwarded headers that we mistakenly trust.
- A rust representation of the forwarded header.
- Trillium handler for