aboutsummaryrefslogtreecommitdiffstats
path: root/Bugzilla/Auth
diff options
context:
space:
mode:
authormkanat%bugzilla.org <>2009-12-31 12:53:19 +0000
committermkanat%bugzilla.org <>2009-12-31 12:53:19 +0000
commit8d2b07ea05e895f040d1805221135bfb68dc7f7c (patch)
tree0e7abffa238bf380bd944971915c247773abd93a /Bugzilla/Auth
parent1a4a843db26f6c3c208fa5dfdca7933b7cb76db2 (diff)
downloadbugs-8d2b07ea05e895f040d1805221135bfb68dc7f7c.tar
bugs-8d2b07ea05e895f040d1805221135bfb68dc7f7c.tar.gz
bugs-8d2b07ea05e895f040d1805221135bfb68dc7f7c.tar.bz2
bugs-8d2b07ea05e895f040d1805221135bfb68dc7f7c.tar.xz
bugs-8d2b07ea05e895f040d1805221135bfb68dc7f7c.zip
Bug 527586: Use X-Forwarded-For instead of REMOTE_ADDR for trusted proxies
Patch by Max Kanat-Alexander <mkanat@bugzilla.org> r=dkl, a=mkanat
Diffstat (limited to 'Bugzilla/Auth')
-rw-r--r--Bugzilla/Auth/Login/Cookie.pm2
-rw-r--r--Bugzilla/Auth/Persist/Cookie.pm2
2 files changed, 2 insertions, 2 deletions
diff --git a/Bugzilla/Auth/Login/Cookie.pm b/Bugzilla/Auth/Login/Cookie.pm
index 0b002168e..570988f7e 100644
--- a/Bugzilla/Auth/Login/Cookie.pm
+++ b/Bugzilla/Auth/Login/Cookie.pm
@@ -35,7 +35,7 @@ sub get_login_info {
my $cgi = Bugzilla->cgi;
my $dbh = Bugzilla->dbh;
- my $ip_addr = $cgi->remote_addr();
+ my $ip_addr = remote_ip();
my $login_cookie = $cgi->cookie("Bugzilla_logincookie");
my $user_id = $cgi->cookie("Bugzilla_login");
diff --git a/Bugzilla/Auth/Persist/Cookie.pm b/Bugzilla/Auth/Persist/Cookie.pm
index 1e1b3a871..232212075 100644
--- a/Bugzilla/Auth/Persist/Cookie.pm
+++ b/Bugzilla/Auth/Persist/Cookie.pm
@@ -52,7 +52,7 @@ sub persist_login {
my $ip_addr;
if ($input_params->{'Bugzilla_restrictlogin'}) {
- $ip_addr = $cgi->remote_addr;
+ $ip_addr = remote_ip();
# The IP address is valid, at least for comparing with itself in a
# subsequent login
trick_taint($ip_addr);