@@ -33,13 +33,13 @@ and what headers your reverse proxy uses to send information:
3333 # ...
3434 // the IP address (or range) of your proxy
3535 trusted_proxies : ' 192.0.0.1,10.0.0.0/8'
36- // trust *all* "X-Forwarded-*" headers (the ! prefix means to not trust those headers)
37- trusted_headers : ['x-forwarded-all ', '! x-forwarded-host', '! x-forwarded-prefix ']
36+ // trust *all* "X-Forwarded-*" headers
37+ trusted_headers : ['x-forwarded-for ', 'x-forwarded-host', 'x-forwarded-proto', 'x-forwarded-port ']
3838 // or, if your proxy instead uses the "Forwarded" header
39- trusted_headers : ['forwarded', '!x-forwarded-host', '!x-forwarded-prefix' ]
39+ trusted_headers : ['forwarded']
4040 // or, if you're using a wellknown proxy
41- trusted_headers : [!php/const Symfony\\Component\\HttpFoundation\\Request::HEADER_X_FORWARDED_AWS_ELB, '!x-forwarded-host', '!x-forwarded-prefix' ]
42- trusted_headers : [!php/const Symfony\\Component\\HttpFoundation\\Request::HEADER_X_FORWARDED_TRAEFIK, '!x-forwarded-host', '!x-forwarded-prefix' ]
41+ trusted_headers : [!php/const Symfony\\Component\\HttpFoundation\\Request::HEADER_X_FORWARDED_AWS_ELB]
42+ trusted_headers : [!php/const Symfony\\Component\\HttpFoundation\\Request::HEADER_X_FORWARDED_TRAEFIK]
4343
4444code-block :: xml
4545
@@ -57,15 +57,14 @@ and what headers your reverse proxy uses to send information:
5757 <!-- the IP address (or range) of your proxy -->
5858 <framework : trusted-proxies >192.0.0.1,10.0.0.0/8</framework : trusted-proxies >
5959
60- <!-- trust *all* "X-Forwarded-*" headers (the ! prefix means to not trust those headers) -->
61- <framework : trusted-header >x-forwarded-all</framework : trusted-header >
62- <framework : trusted-header >!x-forwarded-host</framework : trusted-header >
63- <framework : trusted-header >!x-forwarded-prefix</framework : trusted-header >
60+ <!-- trust *all* "X-Forwarded-*" headers -->
61+ <framework : trusted-header >x-forwarded-for</framework : trusted-header >
62+ <framework : trusted-header >x-forwarded-host</framework : trusted-header >
63+ <framework : trusted-header >x-forwarded-proto</framework : trusted-header >
64+ <framework : trusted-header >x-forwarded-port</framework : trusted-header >
6465
6566 <!-- or, if your proxy instead uses the "Forwarded" header -->
6667 <framework : trusted-header >forwarded</framework : trusted-header >
67- <framework : trusted-header >!x-forwarded-host</framework : trusted-header >
68- <framework : trusted-header >!x-forwarded-prefix</framework : trusted-header >
6968 </framework : config >
7069 </container >
7170
@@ -78,12 +77,12 @@ and what headers your reverse proxy uses to send information:
7877 // the IP address (or range) of your proxy
7978 'trusted_proxies' => '192.0.0.1,10.0.0.0/8',
8079 // trust *all* "X-Forwarded-*" headers (the ! prefix means to not trust those headers)
81- 'trusted_headers' => ['x-forwarded-all ', '! x-forwarded-host', '! x-forwarded-prefix '],
80+ 'trusted_headers' => ['x-forwarded-for ', 'x-forwarded-host', 'x-forwarded-proto', 'x-forwarded-port '],
8281 // or, if your proxy instead uses the "Forwarded" header
83- 'trusted_headers' => ['forwarded', '!x-forwarded-host', '!x-forwarded-prefix' ],
82+ 'trusted_headers' => ['forwarded'],
8483 // or, if you're using a wellknown proxy
85- 'trusted_headers' => [Request::HEADER_X_FORWARDED_AWS_ELB, '!x-forwarded-host', '!x-forwarded-prefix' ],
86- 'trusted_headers' => [Request::HEADER_X_FORWARDED_TRAEFIK, '!x-forwarded-host', '!x-forwarded-prefix' ],
84+ 'trusted_headers' => [Request::HEADER_X_FORWARDED_AWS_ELB],
85+ 'trusted_headers' => [Request::HEADER_X_FORWARDED_TRAEFIK],
8786 ]);
8887
8988deprecated :: 5.2
0 commit comments