OrgGo
/
caddy
mirror of https://github.com/caddyserver/caddy.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

cmd: reverse-proxy: add --insecure flag (with warning) (#3389)

This commit is contained in:
linquize 2020-05-13 00:43:18 +08:00 committed by GitHub
parent ea7e4b4024
commit 44536a7594
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 5 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
modules/caddyhttp/reverseproxy/command.go
View File

@ -59,6 +59,7 @@ default, all incoming headers are passed through unmodified.)
fs.String("from", "localhost", "Address on which to receive traffic")
fs.String("to", "", "Upstream address to which to to proxy traffic")
fs.Bool("change-host-header", false, "Set upstream Host header to address of upstream")
fs.Bool("insecure", false, "Disable TLS verification (WARNING: DISABLES SECURITY, WHY ARE YOU EVEN USING TLS?)")
return fs
}(),
})
@ -68,6 +69,7 @@ func cmdReverseProxy(fs caddycmd.Flags) (int, error) {
from := fs.String("from")
to := fs.String("to")
changeHost := fs.Bool("change-host-header")
insecure := fs.Bool("insecure")
httpPort := strconv.Itoa(caddyhttp.DefaultHTTPPort)
httpsPort := strconv.Itoa(caddyhttp.DefaultHTTPSPort)
@ -127,6 +129,9 @@ func cmdReverseProxy(fs caddycmd.Flags) (int, error) {
ht := HTTPTransport{}
if toAddr.Scheme == "https" {
ht.TLS = new(TLSConfig)
if insecure {
ht.TLS.InsecureSkipVerify = true
}
}
handler := Handler{