30 sec. to wait before login since update 10.0

LukasReschke · October 27, 2016, 10:51am

If there only would be a configuration flag for that and Nextcloud would get the proper IP.

nextcloud/server/blob/ba2b274fccdeb06ea9ddba0590644653e073d934/config/config.sample.php#L1225-L1243


/**
* List of trusted proxy servers
* 
* If you configure these also consider setting `forwarded_for_headers` which
* otherwise defaults to `HTTP_X_FORWARDED_FOR` (the `X-Forwarded-For` header).
*/
'trusted_proxies' => array('203.0.113.45', '198.51.100.128'),


/**
* Headers that should be trusted as client IP address in combination with
* `trusted_proxies`. If the HTTP header looks like 'X-Forwarded-For', then use
* 'HTTP_X_FORWARDED_FOR' here.
*
* If set incorrectly, a client can spoof their IP address as visible to
* Nextcloud, bypassing access controls and making logs useless!
*
* Defaults to 'HTTP_X_FORWARED_FOR' if unset
*/
'forwarded_for_headers' => array('HTTP_X_FORWARDED', 'HTTP_FORWARDED_FOR'),