Mercurial > hg > nginx
annotate conf/fastcgi_params @ 9287:32d4582c484d
Mail: fixed EXTERNAL to be accepted only if enabled.
As originally implemented in 6774:bcb107bb89cd, it wasn't possible to
disable the EXTERNAL authentication method: it was always accepted
(but not advertised unless enabled). It is, however, believed that
it is better to reject attempts to use the disabled method, hence in
6869:b2915d99ee8d an attempt was made to address this. This attempt
was insufficient though: it was still possible to use the method as long
as initial SASL response was used.
With this patch both challenge-response and initial response forms are
disabled. Additionally, initial response handling for the PLAIN
authentication is removed from ngx_mail_auth_parse(), for consistency
and to don't provoke such bugs.
| author | Maxim Dounin <mdounin@mdounin.ru> |
|---|---|
| date | Mon, 03 Jun 2024 18:03:05 +0300 |
| parents | 62869a9b2e7d |
| children |
| rev | line source |
|---|---|
| 537 | 1 |
| 2 fastcgi_param QUERY_STRING $query_string; | |
| 3 fastcgi_param REQUEST_METHOD $request_method; | |
| 4 fastcgi_param CONTENT_TYPE $content_type; | |
| 5 fastcgi_param CONTENT_LENGTH $content_length; | |
| 6 | |
| 7 fastcgi_param SCRIPT_NAME $fastcgi_script_name; | |
| 8 fastcgi_param REQUEST_URI $request_uri; | |
| 9 fastcgi_param DOCUMENT_URI $document_uri; | |
| 10 fastcgi_param DOCUMENT_ROOT $document_root; | |
| 11 fastcgi_param SERVER_PROTOCOL $server_protocol; | |
|
6168
62869a9b2e7d
Added the REQUEST_SCHEME parameter.
Maxim Dounin <mdounin@mdounin.ru>
parents:
4333
diff
changeset
|
12 fastcgi_param REQUEST_SCHEME $scheme; |
|
4333
352a7b025f2e
Added HTTPS param with Apache-like behaviour to fastcgi/scgi/uwsgi_params (fixes #38).
Valentin Bartenev <vbart@nginx.com>
parents:
1330
diff
changeset
|
13 fastcgi_param HTTPS $https if_not_empty; |
| 537 | 14 |
| 15 fastcgi_param GATEWAY_INTERFACE CGI/1.1; | |
| 1330 | 16 fastcgi_param SERVER_SOFTWARE nginx/$nginx_version; |
| 537 | 17 |
| 18 fastcgi_param REMOTE_ADDR $remote_addr; | |
| 19 fastcgi_param REMOTE_PORT $remote_port; | |
| 20 fastcgi_param SERVER_ADDR $server_addr; | |
| 21 fastcgi_param SERVER_PORT $server_port; | |
| 22 fastcgi_param SERVER_NAME $server_name; | |
| 23 | |
| 24 # PHP only, required if PHP was built with --enable-force-cgi-redirect | |
| 25 fastcgi_param REDIRECT_STATUS 200; |