[Pas-dev] REMOTE_ADDR/HTTP_X_FORWARDED_FOR

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 422-6466

We've got a Pas installation that is sitting behind a proxy (to make
SSL and mog_gzip work togeather).  Apache sets REMOTE_ADDR to the adress
of the proxy that's doing the forwarding (for us this is typically
127.0.0.1), and HTTP_X_FORWARDED_FOR to the address that the request
is actually for.

Our set up looks like this:

  PROXY => MOD_PERL/Pas

Where the proxy does SSL, while the mod_perl/Pas instance uses mod_gzip
for content compression.

Using the REMOTE_ADDR as part of the seesion id is a useful feature (in 
case you want to do ip validation/verification or use it for tracking 
purposes).

It would be nice if Pas could switch on which env var to use to obtain
the remote ip address.  I'm proposing to just make this a configuration
setting, though I'm not sure what other environmetns are like or how
else we could support this.

Feedback?

Kyle

-- 

------------------------------------------------------------------------------
Wisdom and Compassion are inseparable.
        -- Christmas Humphreys
mo...@vo...                            http://www.voicenet.com/~mortis
------------------------------------------------------------------------------