cloud-hosting-platform/haproxy-manager-base
4
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
1ff51da6f067d3bb6aca499fb427879c3fbec9e2
haproxy-manager-base/trusted_ips.list
Josh Knapp 1ff51da6f0
All checks were successful
Build and push coraza-spoa / Build-and-Push (push) Successful in 1m49s
Details
HAProxy Manager Build and Push / Build-and-Push (push) Successful in 1m55s
Details
sanitize public mirror: drop personal IP and infra/customer hostnames 
- trusted_ips.{list,map}: replace home IP with 127.0.0.1 + usage notes
- skill: resolve deploy host from gitignored target-host.local, ask if unset
  (no hardcoded server FQDN); customer host in WAF test -> <live-vhost>
- README / coraza README: registry FQDN in run examples -> placeholder
- 403 block page: drop hardcoded support link -> contact provider support
- CLAUDE.md: note whitelist files ship without real IPs
- .gitignore: ignore target-host.local and *.local

Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
2026-06-04 06:32:15 -07:00

10 lines
484 B
Plaintext
Raw Blame History

# Source-IP whitelist — exempt from HAProxy rate limits (one IP or CIDR per line).
# Referenced by templates/hap_listener.tpl:
# acl is_trusted_ip src -f /etc/haproxy/trusted_ips.list
#
# Add trusted source IPs below. Do NOT commit real/personal IPs to this repo —
# it is mirrored publicly. Keep real entries in an untracked local copy, or add
# them directly on the server (the file lives in the /etc/haproxy named volume
# and persists across container recreates).
127.0.0.1
Reference in New Issue View Git Blame Copy Permalink