Forwarded header support for Morepath
more.forwarded: Forwarded header support for Morepath
If you want to run Morepath behind a trusted proxy that sets the Forwarded header, you can use more.forwarded to make Morepath generate URLs that take this header into account.
Note: Only use this if you know you are behind a trusted proxy that indeed sets the Forwarded header, otherwise you expose your server to potential attacks.
Morepath 0.14 introduces a HOST_HEADER_PROTECTION tween that we should be used over. This stops the forwarded header from injecting incorrect Host headers.
Make tests work with Morepath 0.14 and later.
Initial public release.
Release history Release notifications | RSS feed
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
more.forwarded-0.2.tar.gz (7.6 kB view hashes)