Trust all remote proxies

brefphp · Sep 28, 2024 · b2bc757 · b2bc757
1 parent 62a6391
commit b2bc757
Show file tree

Hide file tree

Showing 2 changed files with 2 additions and 1 deletion.
diff --git a/docs/symfony/getting-started.mdx b/docs/symfony/getting-started.mdx
@@ -165,7 +165,7 @@ Add the following lines to `config/packages/framework.yaml`:
 ```yml filename="config/packages/framework.yaml" {2-5}
 framework:
   # trust the remote address because API Gateway has no fixed IP or CIDR range that we can target
-  trusted_proxies: '127.0.0.1'
+  trusted_proxies: '127.0.0.1, 0.0.0.0/0'
   # trust "X-Forwarded-*" headers coming from API Gateway
   trusted_headers: [ 'x-forwarded-for', 'x-forwarded-proto', 'x-forwarded-port' ]
 ```

diff --git a/docs/use-cases/websites.mdx b/docs/use-cases/websites.mdx
@@ -94,6 +94,7 @@ serverless plugin install -n serverless-lift
         Because this construct sets the `X-Forwarded-Host` header by default, you should add it in your `trusted_headers` config, otherwise Symfony might generate wrong URLs.
 
         ```yml filename="config/packages/framework.yaml" /, 'x-forwarded-host'/
+           trusted_proxies: '127.0.0.1, 0.0.0.0/0'
            trusted_headers: [ 'x-forwarded-for', 'x-forwarded-proto', 'x-forwarded-port', 'x-forwarded-host' ]
         ```