Drupal
/
drupal
mirror of https://git.drupalcode.org/project/drupal.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

Issue #3181084 by alexpott, anushrikumari: Remove commented out httpoxy rule from web.config

merge-requests/83/head
catch 2020-11-30 11:14:32 +00:00
parent 6aab22375b
commit 0a27cd413e
3 changed files with 0 additions and 25 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
core/assets/scaffold/files/web.config
View File

@ -33,18 +33,6 @@
<add input="{REQUEST_FILENAME}" matchType="IsFile" negate="true" /> <add input="{REQUEST_FILENAME}" matchType="IsFile" negate="true" />
</conditions> </conditions>
</rule> </rule>
<!-- If running on a PHP version affected by httpoxy vulnerability
uncomment the following rule to mitigate it's impact. To make this
rule work, you will also need to add HTTP_PROXY to the allowed server
variables manually in IIS. See https://www.drupal.org/node/2783079.
<rule name="Erase HTTP_PROXY" patternSyntax="Wildcard">
<match url="*.*" />
<serverVariables>
<set name="HTTP_PROXY" value="" />
</serverVariables>
<action type="None" />
</rule>
-->
<!-- To redirect all users to access the site WITH the 'www.' prefix, <!-- To redirect all users to access the site WITH the 'www.' prefix,
http://example.com/foo will be redirected to http://www.example.com/foo) http://example.com/foo will be redirected to http://www.example.com/foo)
adapt and uncomment the following: --> adapt and uncomment the following: -->

1
core/misc/cspell/dictionary.txt
View File

@ -731,7 +731,6 @@ httpd
httpheader httpheader
httpkernel httpkernel
httponly httponly
httpoxy
huhuu huhuu
hurlant hurlant
hustlin hustlin

12
web.config
View File

@ -33,18 +33,6 @@
<add input="{REQUEST_FILENAME}" matchType="IsFile" negate="true" /> <add input="{REQUEST_FILENAME}" matchType="IsFile" negate="true" />
</conditions> </conditions>
</rule> </rule>
<!-- If running on a PHP version affected by httpoxy vulnerability
uncomment the following rule to mitigate it's impact. To make this
rule work, you will also need to add HTTP_PROXY to the allowed server
variables manually in IIS. See https://www.drupal.org/node/2783079.
<rule name="Erase HTTP_PROXY" patternSyntax="Wildcard">
<match url="*.*" />
<serverVariables>
<set name="HTTP_PROXY" value="" />
</serverVariables>
<action type="None" />
</rule>
-->
<!-- To redirect all users to access the site WITH the 'www.' prefix, <!-- To redirect all users to access the site WITH the 'www.' prefix,
http://example.com/foo will be redirected to http://www.example.com/foo) http://example.com/foo will be redirected to http://www.example.com/foo)
adapt and uncomment the following: --> adapt and uncomment the following: -->