[Zope-Checkins] CVS: Zope/doc - CHANGES.txt:1.580 ENVIRONMENT.txt:1.20

Toby Dickenson tdickenson@geminidataloggers.com
Thu, 2 Jan 2003 15:30:28 -0500


Update of /cvs-repository/Zope/doc
In directory cvs.zope.org:/tmp/cvs-serv12855/doc

Modified Files:
	CHANGES.txt ENVIRONMENT.txt 
Log Message:
Implemented smarter-than-REMOTE_ADDR proposal. IP-based access controls now work through a proxy.

=== Zope/doc/CHANGES.txt 1.579 => 1.580 ===
--- Zope/doc/CHANGES.txt:1.579	Fri Dec 20 10:39:22 2002
+++ Zope/doc/CHANGES.txt	Thu Jan  2 15:29:56 2003
@@ -12,6 +12,13 @@
        objects to allow gathering of permission names for products like
        DocFinder and VerboseSecurity.
 
+     - Added a new REQUEST method, getClientAddr(), to determine a clients
+       IP address. Address restrictions in the user folder have been changed
+       to use this method. By default the value returned by this method is the
+       same as the initial value of REQUEST['REMOTE_ADDR']. Zope also has
+       support for obtaining a more useful value from other headers if a
+       front-end proxy is in use. See doc/ENVIRONMENT.txt for details.
+
     Bugs Fixed
 
      - The ZEO unit tests and wo_pcgi.py didn't run on Windows if the path 


=== Zope/doc/ENVIRONMENT.txt 1.19 => 1.20 ===
--- Zope/doc/ENVIRONMENT.txt:1.19	Tue Nov 26 13:48:45 2002
+++ Zope/doc/ENVIRONMENT.txt	Thu Jan  2 15:29:56 2003
@@ -78,6 +78,15 @@
         If set, all site access rules are suppressed (used by SiteAccess
         products).
 
+ZPublisher
+
+    ZOPE_TRUSTED_PROXIES
+
+	A colon seperated list of IP addresses which run trusted
+        proxy servers. If a connection comes from an address listed
+        here, Zope will trust any X-Forwarded-For header to contain
+        the users real IP address for the purposes of address-based
+        authentication limits.
 
 ZEO