-
Notifications
You must be signed in to change notification settings - Fork 156
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Add support for transitioning from PROXY V1 protocol on the incoming side to X-Forwarded-For on the outgoing side #53
Conversation
…pport pem password in config file
…nds struct element depending on which is available, if any.
- minor change to configuration.c to include libgen.h so that there is not an issue with implicit declaration with basename()
Hi. First of all, hitch is protocol agnostic, and we prefer to keep it that way. Adding support for X-Forwarded-For is not something we're looking to do. The PEM passphrase support is interesting, although I think most installations runs unprotected keys. Would it be possible for you to split that into a separate PR? Can you expand on what platforms the nanosecond changes are relevant for? |
Hi I commited bbb4215 and will take a look at the PEM passphrase commit when I get around to it. Thanks :) |
Sorry about my own delay there, I added the nanosecond configuration differences after hitting issues building on OSX el cap. If necessary I can try to take a look at breaking out the xff feature if it isn't possible to cherry pick it out of the existing commits. |
I'd rather avoid putting a pass-phrase in clear text with the rest of the configuration. I'd rather reference a file containing the pass-phrase or a command to run in order to retrieve it. This allows you to manage pure configuration without overhead (think versionning of your config file, hype continuous deployment tool of the moment etc). The pass-phrase would be obtained from a different channel and require the proper privileges (eg. with file permissions). |
Perhaps it could support both using some special syntax, e.g. @/some/path/to/passphrase? |
@@ -84,6 +86,7 @@ struct __hitch_config { | |||
char *SHCUPD_MCASTIF; | |||
char *SHCUPD_MCASTTTL; | |||
#endif | |||
char *PEM_KEYPASS; |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
indent change
@afterfate this pull request has been conflicting with the master branch for a while. I hope you will still be interested submitting a new one without the |
Might not be of interest to a general audience however in our hosting environment we wanted to add some features. We did this a couple of years ago with stud, ending up having changes pulled into insom/stud. This is a hand merge of the changes into hitch, merging with git itself was do-able but ended up being a very large set of changes(obviously). This would make reviewing the changes a painful exercise.