From 75386453bc244b769ee5ec96a2bb03bfb532a0d4 Mon Sep 17 00:00:00 2001 From: Neal Gompa Date: Nov 16 2020 23:52:30 +0000 Subject: pagure: Add empty IP address to the permitted IP filter There seems to be an issue where the IP address reported by the AuthorizedKeysCommand is an empty string (presumably because of gunicorn operating on a socket instead of an IP), so let's ensure that works. --- diff --git a/salt/profile/pagure/files/pagure.cfg b/salt/profile/pagure/files/pagure.cfg index 2ea0afc..13ee352 100644 --- a/salt/profile/pagure/files/pagure.cfg +++ b/salt/profile/pagure/files/pagure.cfg @@ -179,7 +179,7 @@ BLACKLISTED_PROJECTS = [ ### IP addresses allowed to access the internal endpoints ### These endpoints are used by the milter and are security sensitive, thus ### the IP filter -IP_ALLOWED_INTERNAL = ['127.0.0.1', 'localhost', '::1'] +IP_ALLOWED_INTERNAL = ['127.0.0.1', 'localhost', '::1', ''] ### EventSource/Web-Hook/Redis configuration # The eventsource integration is what allows pagure to refresh the content