Support trusted IP list for propagating correlation ID (!123) · Merge requests · GitLab.org / labkit

Stan Hu requested to merge sh-trusted-cidr-propagation into master Jul 16, 2021

In order for us to propagate correlation IDs from Gitaly to Workhorse, which generates its own correlation IDs, we need to enable the propagation option. However, we don't want to allow just anyone to spoof a correlation ID request. We add a trusted CIDR block list so that we can restrict propagation to internal hosts.

Part of gitlab#324836 (closed)

Support trusted IP list for propagating correlation ID

Merge request reports