added HTTP_X_FORWARDED_FOR header when sending oauth request
This commit is contained in:
Even Lo (羅聖智)
parent
6de97fb641
commit
4ec8f33292
|
|
@ -45,11 +45,25 @@ class OAuth2BasicAuthenticator < Auth::ManagedAuthenticator
|
||||||
# This is a little unusual, and utilising multiple authentication methods
|
# This is a little unusual, and utilising multiple authentication methods
|
||||||
# is technically disallowed by the spec (RFC2749 Section 5.2)
|
# is technically disallowed by the spec (RFC2749 Section 5.2)
|
||||||
opts[:client_options][:auth_scheme] = :request_body
|
opts[:client_options][:auth_scheme] = :request_body
|
||||||
|
headers = {
|
||||||
|
"Authorization" => basic_auth_header
|
||||||
|
}
|
||||||
|
|
||||||
|
# 從 env["HTTP_X_FORWARDED_FOR"] 提取值,並檢查是否存在
|
||||||
|
if env["HTTP_X_FORWARDED_FOR"].present?
|
||||||
|
# 提取第一個 IP(通常是用戶端的真實 IP)
|
||||||
|
forwarded_for = env["HTTP_X_FORWARDED_FOR"].split(",").first.strip
|
||||||
|
headers["X-Forwarded-For"] = forwarded_for if forwarded_for.present?
|
||||||
|
end
|
||||||
|
|
||||||
opts[:token_params] = {
|
opts[:token_params] = {
|
||||||
headers: {
|
headers: headers
|
||||||
"Authorization" => basic_auth_header,
|
|
||||||
},
|
|
||||||
}
|
}
|
||||||
|
# opts[:token_params] = {
|
||||||
|
# headers: {
|
||||||
|
# "Authorization" => basic_auth_header,
|
||||||
|
# },
|
||||||
|
# }
|
||||||
elsif SiteSetting.oauth2_send_auth_header?
|
elsif SiteSetting.oauth2_send_auth_header?
|
||||||
opts[:client_options][:auth_scheme] = :basic_auth
|
opts[:client_options][:auth_scheme] = :basic_auth
|
||||||
else
|
else
|
||||||
|
|
|
||||||
Loading…
Reference in New Issue