Commit Graph

17 Commits

Author SHA1 Message Date
Jamieson O'Reilly
e74d8eb8fe fix(gateway): prevent auth bypass when behind unconfigured reverse proxy (#1795)
* fix(gateway): prevent auth bypass when behind unconfigured reverse proxy

When proxy headers (X-Forwarded-For, X-Real-IP) are present but
gateway.trustedProxies is not configured, the gateway now treats
connections as non-local. This prevents a scenario where all proxied
requests appear to come from localhost and receive automatic trust.

Previously, running behind nginx/Caddy without configuring trustedProxies
would cause isLocalClient=true for all external connections, potentially
bypassing authentication and auto-approving device pairing.

The gateway now logs a warning when this condition is detected, guiding
operators to configure trustedProxies for proper client IP detection.

Also adds documentation for reverse proxy security configuration.

* fix: harden reverse proxy auth (#1795) (thanks @orlyjamie)

---------

Co-authored-by: orlyjamie <orlyjamie@users.noreply.github.com>
Co-authored-by: Peter Steinberger <steipete@gmail.com>
2026-01-25 15:08:03 +00:00
Peter Steinberger
8f0de26e26 fix: honor gateway env token for doctor/security
Co-authored-by: azade-c <azade-c@users.noreply.github.com>
2026-01-23 03:16:52 +00:00
Peter Steinberger
e9245837ea fix: enforce secure control ui auth 2026-01-21 23:58:42 +00:00
Peter Steinberger
cc94557d54 fix: tighten small-model audit guardrails 2026-01-20 23:52:26 +00:00
Peter Steinberger
8e87d8879e refactor: migrate messaging plugins to sdk 2026-01-18 08:54:00 +00:00
Peter Steinberger
87ebcddc50 fix(security): default-deny command execution 2026-01-17 08:28:09 +00:00
Peter Steinberger
ecd3c2a0ee fix(security): gate slash/control commands 2026-01-17 06:49:34 +00:00
Peter Steinberger
48c8063028 fix(security): gate slash commands by sender 2026-01-17 05:25:42 +00:00
Peter Steinberger
78fa1042cb test: expand gateway auth probe coverage 2026-01-16 19:16:03 +00:00
Ivan Pereira
b16f88d39b test(security): add coverage for gateway probe auth selection 2026-01-16 13:31:01 +00:00
Peter Steinberger
7a6561a1c0 feat: warn on weak model tiers 2026-01-16 09:34:37 +00:00
Ubuntu
7df03a2456 feat(session): add dmScope for multi-user DM isolation
Co-authored-by: Alphonse-arianee <Alphonse-arianee@users.noreply.github.com>
2026-01-16 04:13:10 +00:00
Peter Steinberger
f5813df79d test: fix Windows security audit perms 2026-01-15 06:04:39 +00:00
Peter Steinberger
87400c3aa0 feat(security): expand audit and safe --fix 2026-01-15 05:31:43 +00:00
Peter Steinberger
18f4d5c989 chore: format sources and update protocol outputs 2026-01-15 05:17:19 +00:00
Peter Steinberger
ebcf6ada8c feat: add Chrome extension browser relay 2026-01-15 04:52:28 +00:00
Peter Steinberger
e2832f544f feat: add security audit + onboarding checkpoint 2026-01-15 01:25:11 +00:00