Release Highlights
- Operators can now configure a manifest property
router.disable_log_forwarded_for
to disable logging of X-Forwarded-For header in gorouter logs. This is to comply with EU regulations that do not allow persisting personal data. For details - Operators can now configure a manifest property
router.disable_log_source_ip
to disable logging of source IP in gorouter logs. This is to comply with EU regulations that do not allow persisting personal data. For details
Bug fixes:
- We fixed an issue where Gorouter was not previously forwarding/settings the client certificate in the XFCC header when a request was being proxied through a route service. Gorouter now sets the XFCC header with the client certificate. See the manifest property
router.forwarded_client_cert
to understand the options available for forwarding a client certificate. For details - We fixed an issue when sanitizing X-Forwarded-For header, when
force_forwarded_proto_https: false
andsanitize_forwarded_proto: true
. When a request is received on port 443 with theX-Forwarded-Proto: http
the Gorouter sanitizes theX-Forwarded-For
header tohttp
instead of upgrading the connection. For details
Manifest Property Changes
0.175.0 | 0.176.0 | Default Value |
---|---|---|
did not exist | router.disable_log_forwarded_for
| false |
did not exist | router.disable_log_source_ip
| false |