We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
No response
To avoid SSRF, Kratos will block calling some private IP ranges.
This should be disabled by either doing:
clients: http: disallow_private_ip_ranges: false
or by whitelisting the relevant URL:
clients: http: disallow_private_ip_ranges: true private_ip_exception_urls: - http://100.64.1.1:80/route
However, for the IP range 100.64.0.0/10, doing any of those will not work. The exceptions are not taken into account.
This is not directly an issue in Kratos, but in ory/x/httpx. See related issue: ory/x#805
See related issue: ory/x#805
v1.2.0
macOS
Kubernetes with Helm
The text was updated successfully, but these errors were encountered:
No branches or pull requests
Preflight checklist
Ory Network Project
No response
Describe the bug
To avoid SSRF, Kratos will block calling some private IP ranges.
This should be disabled by either doing:
or by whitelisting the relevant URL:
However, for the IP range 100.64.0.0/10, doing any of those will not work.
The exceptions are not taken into account.
This is not directly an issue in Kratos, but in ory/x/httpx. See related issue: ory/x#805
Reproducing the bug
See related issue: ory/x#805
Relevant log output
No response
Relevant configuration
No response
Version
v1.2.0
On which operating system are you observing this issue?
macOS
In which environment are you deploying?
Kubernetes with Helm
Additional Context
No response
The text was updated successfully, but these errors were encountered: