Lib.rs

Web programmingHTTP serverTrillium
#trillium #async #framework

trillium-forwarding

handler for trillium.rs that rewrites host/scheme from forwarded/x-forwarded headers

by Jacob Rothstein and 6 contributors

6 releases

0.2.4 Apr 7, 2024
0.2.3 Jan 2, 2024
0.2.2 Dec 20, 2023
0.2.1 Dec 3, 2021
0.1.0 Jul 16, 2021

#18 in #trillium

Download history 264/week @ 2024-09-04 321/week @ 2024-09-11 140/week @ 2024-09-18 200/week @ 2024-09-25 207/week @ 2024-10-02 101/week @ 2024-10-09 296/week @ 2024-10-16 347/week @ 2024-10-23 232/week @ 2024-10-30 294/week @ 2024-11-06 535/week @ 2024-11-13 318/week @ 2024-11-20 511/week @ 2024-11-27 766/week @ 2024-12-04 263/week @ 2024-12-11 231/week @ 2024-12-18

1,779 downloads per month
Used in 3 crates (via trillium-proxy)

MIT/Apache

94KB
1.5K SLoC

Welcome to Trillium!

📖 Guide 📖

The guide provides an architectural overview and lay of the land connecting the trillium crates.

📑 Rustdocs 📑

The rustdocs represent the best way to learn about any of trillium's individual crates and the specific interfaces.



Legal:

Licensed under either of

at your option.

Unless you explicitly state otherwise, any contribution intentionally submitted for inclusion in the work by you, as defined in the Apache-2.0 license, shall be dual licensed as above, without any additional terms or conditions.

lib.rs:

Trillium handler for x-forwarded-* / forwarded

This simple handler rewrites the request's host, secure setting, and peer ip based on headers added by a trusted reverse proxy.

The specific headers that are understood by this handler are:

  • Forwarded
  • or some combination of the following

There are several ways of specifying when to trust a peer ip address, and the narrowest possible trust rules should be used for a given deployment so as to decrease the chance for a threat actor to generate a request with forwarded headers that we mistakenly trust.

Dependencies

~7.5MB
~194K SLoC