HTTP header sanitizing
For security reasons, Envoy will “sanitize” various incoming HTTP headers depending on whether the request is an internal or external request. The sanitizing action depends on the header and may result in addition, removal, or modification. Ultimately, whether the request is considered internal or external is governed by the x-forwarded-for header (please read the linked section carefully as how Envoy populates the header is complex and depends on the use_remote_address setting). In addition, the internal_address_config setting can be used to configure the internal/external determination.
Envoy will potentially sanitize the following headers:
当前内容版权归 Envoy Proxy 或其关联方所有,如需对内容或内容相关联开源项目进行关注与资助,请访问 Envoy Proxy .