vikarti.anatra/safing-portmaster
1
0
Fork 0
mirror of https://github.com/safing/portmaster synced 2025-04-12 23:19:10 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

Fix process based API authentication when API listens on 0.0.0.0

Browse source
This commit is contained in:
Daniel 2024-05-08 14:18:52 +02:00
parent 9f21e87628
commit a3526604e0
1 changed files with 5 additions and 1 deletions

6
service/firewall/api.go
View file

@ -75,6 +75,11 @@ func apiAuthenticator(r *http.Request, s *http.Server) (token *api.AuthToken, er
if err != nil {
return nil, fmt.Errorf("failed to get local IP/Port: %w", err)
}
// Correct 0.0.0.0 to 127.0.0.1 to fix local process-based authentication,
// if 0.0.0.0 is used as the API listen address.
if localIP.Equal(net.IPv4zero) {
localIP = net.IPv4(127, 0, 0, 1)
}
// get remote IP/Port
remoteIP, remotePort, err := netutils.ParseIPPort(r.RemoteAddr)
@ -110,7 +115,6 @@ func apiAuthenticator(r *http.Request, s *http.Server) (token *api.AuthToken, er
if !retry {
break
}
// wait a little
time.Sleep(500 * time.Millisecond)
}