synapse

kaslo/synapse

Fork 0

Commit Graph

Author	SHA1	Message	Date
Andrew Morgan	0060eb332c	Port "Allow providing credentials to HTTPS_PROXY (#9657 )" from mainline (#95 ) * Allow providing credentials to HTTPS_PROXY (#9657) Addresses https://github.com/matrix-org/synapse-dinsic/issues/70 This PR causes `ProxyAgent` to attempt to extract credentials from an `HTTPS_PROXY` env var. If credentials are found, a `Proxy-Authorization` header ([details](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Proxy-Authorization)) is sent to the proxy server to authenticate against it. The headers are not passed to the remote server. Also added some type hints. * lint	2021-03-23 15:35:38 +01:00
Andrew Morgan	232b324c38	Port "Add support for no_proxy and case insensitive env variables" from mainline to dinsic (#93 ) This PR is simply porting https://github.com/matrix-org/synapse/pull/9372 to dinsic. I also had to bring in https://github.com/matrix-org/synapse/pull/8821 and https://github.com/matrix-org/synapse/pull/9084 for this code to work properly - a sign that we should merge mainline into dinsic again soon.	2021-03-22 17:48:42 +00:00
Richard van der Hoff	85f15ac592	Support for routing outbound HTTP requests via a proxy (#6239 ) The `http_proxy` and `HTTPS_PROXY` env vars can be set to a `host[:port]` value which should point to a proxy. The address of the proxy should be excluded from IP blacklists such as the `url_preview_ip_range_blacklist`. The proxy will then be used for * push * url previews * phone-home stats * recaptcha validation * CAS auth validation It will not be used for: * Application Services * Identity servers * Outbound federation * In worker configurations, connections from workers to masters Fixes #4198.	2019-11-01 14:22:46 +00:00

Author

SHA1

Message

Date

Andrew Morgan

0060eb332c

Port "Allow providing credentials to HTTPS_PROXY (#9657 )" from mainline (#95 )

* Allow providing credentials to HTTPS_PROXY (#9657)

Addresses https://github.com/matrix-org/synapse-dinsic/issues/70

This PR causes `ProxyAgent` to attempt to extract credentials from an `HTTPS_PROXY` env var. If credentials are found, a `Proxy-Authorization` header ([details](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Proxy-Authorization)) is sent to the proxy server to authenticate against it. The headers are *not* passed to the remote server.

Also added some type hints.

* lint

2021-03-23 15:35:38 +01:00

Andrew Morgan

232b324c38

Port "Add support for no_proxy and case insensitive env variables" from mainline to dinsic (#93 )

This PR is simply porting https://github.com/matrix-org/synapse/pull/9372 to dinsic.

I also had to bring in https://github.com/matrix-org/synapse/pull/8821 and https://github.com/matrix-org/synapse/pull/9084 for this code to work properly - a sign that we should merge mainline into dinsic again soon.

2021-03-22 17:48:42 +00:00

Richard van der Hoff

85f15ac592

Support for routing outbound HTTP requests via a proxy (#6239 )

The `http_proxy` and `HTTPS_PROXY` env vars can be set to a `host[:port]` value which should point to a proxy.

The address of the proxy should be excluded from IP blacklists such as the `url_preview_ip_range_blacklist`.

The proxy will then be used for
 * push
 * url previews
 * phone-home stats
 * recaptcha validation
 * CAS auth validation

It will *not* be used for:
 * Application Services
 * Identity servers
 * Outbound federation
 * In worker configurations, connections from workers to masters

Fixes #4198.

2019-11-01 14:22:46 +00:00

3 Commits