Create setting/flag forwarded-port to enable/disable X-Forwarded-Port…

… to populate remote address info (closes encode#1974)
victor-torres · Sep 30, 2024 · f439d0e · f439d0e
1 parent c7668ce
commit f439d0e
Show file tree

Hide file tree

Showing 7 changed files with 46 additions and 5 deletions.
diff --git a/docs/deployment.md b/docs/deployment.md
@@ -99,6 +99,8 @@ Options:
                                   to the $FORWARDED_ALLOW_IPS environment
                                   variable if available, or '127.0.0.1'. The
                                   literal '*' means trust everything.
+  --forwarded-port / --no-forwarded-port
+                                  Enable/Disable X-Forwarded-Port handling.
   --root-path TEXT                Set the ASGI 'root_path' for applications
                                   submounted below a given URL path.
   --limit-concurrency INTEGER     Maximum number of concurrent connections or

diff --git a/docs/index.md b/docs/index.md
@@ -169,6 +169,8 @@ Options:
                                   to the $FORWARDED_ALLOW_IPS environment
                                   variable if available, or '127.0.0.1'. The
                                   literal '*' means trust everything.
+  --forwarded-port / --no-forwarded-port
+                                  Enable/Disable X-Forwarded-Port handling.
   --root-path TEXT                Set the ASGI 'root_path' for applications
                                   submounted below a given URL path.
   --limit-concurrency INTEGER     Maximum number of concurrent connections or

diff --git a/docs/settings.md b/docs/settings.md
@@ -91,6 +91,7 @@ Note that WSGI mode always disables WebSocket support, as it is not supported by
 * `--proxy-headers` / `--no-proxy-headers` - Enable/Disable X-Forwarded-Proto, X-Forwarded-For to populate remote address info. Defaults to enabled, but is restricted to only trusting
 connecting IPs in the `forwarded-allow-ips` configuration.
 * `--forwarded-allow-ips` <comma-separated-list> Comma separated list of IP Addresses, IP Networks, or literals (e.g. UNIX Socket path) to trust with proxy headers. Defaults to the `$FORWARDED_ALLOW_IPS` environment variable if available, or '127.0.0.1'. The literal `'*'` means trust everything.
+* `--forwarded-port` / `--no-forwarded-port` - Enable/Disable X-Forwarded-Port to populate remote address info. Defaults to disabled.
 * `--server-header` / `--no-server-header` - Enable/Disable default `Server` header.
 * `--date-header` / `--no-date-header` - Enable/Disable default `Date` header.
 

diff --git a/tests/middleware/test_proxy_headers.py b/tests/middleware/test_proxy_headers.py
@@ -22,6 +22,7 @@
 
 X_FORWARDED_FOR = "X-Forwarded-For"
 X_FORWARDED_PROTO = "X-Forwarded-Proto"
+X_FORWARDED_PORT = "X-Forwarded-Port"
 
 
 async def default_app(scope: Scope, receive: ASGIReceiveCallable, send: ASGISendCallable) -> None:
@@ -39,6 +40,7 @@ async def default_app(scope: Scope, receive: ASGIReceiveCallable, send: ASGISend
 def make_httpx_client(
     trusted_hosts: str | list[str],
     client: tuple[str, int] = ("127.0.0.1", 123),
+    forwarded_port: bool = False,
 ) -> httpx.AsyncClient:
     """Create async client for use in test cases.
 
@@ -47,7 +49,7 @@ def make_httpx_client(
         client: transport client to use
     """
 
-    app = ProxyHeadersMiddleware(default_app, trusted_hosts)
+    app = ProxyHeadersMiddleware(default_app, trusted_hosts, forwarded_port)
     transport = httpx.ASGITransport(app=app, client=client)  # type: ignore
     return httpx.AsyncClient(transport=transport, base_url="http://testserver")
 
@@ -422,6 +424,24 @@ async def test_proxy_headers_multiple_proxies(trusted_hosts: str | list[str], ex
     assert response.text == expected
 
 
+@pytest.mark.anyio
+@pytest.mark.parametrize(
+    ("forwarded_port", "port", "expected"),
+    [
+        (True, "443", 443),
+        (True, "1234", 1234),
+        (False, "1234", 0),
+        (False, "443", 0),
+    ]
+)
+async def test_proxy_headers_with_forwarded_port(forwarded_port, port, expected) -> None:
+    async with make_httpx_client("*", forwarded_port=forwarded_port) as client:
+        headers = {X_FORWARDED_FOR: "192.168.0.2", X_FORWARDED_PROTO: "https", X_FORWARDED_PORT: port}
+        response = await client.get("/", headers=headers)
+    assert response.status_code == 200
+    assert response.text == f"https://192.168.0.2:{expected}"
+
+
 @pytest.mark.anyio
 async def test_proxy_headers_invalid_x_forwarded_for() -> None:
     async with make_httpx_client("*") as client:

diff --git a/uvicorn/config.py b/uvicorn/config.py
@@ -205,6 +205,7 @@ def __init__(
         server_header: bool = True,
         date_header: bool = True,
         forwarded_allow_ips: list[str] | str | None = None,
+        forwarded_port: bool = False,
         root_path: str = "",
         limit_concurrency: int | None = None,
         limit_max_requests: int | None = None,
@@ -331,8 +332,10 @@ def __init__(
         self.forwarded_allow_ips: list[str] | str
         if forwarded_allow_ips is None:
             self.forwarded_allow_ips = os.environ.get("FORWARDED_ALLOW_IPS", "127.0.0.1")
+            self.forwarded_port = False
         else:
             self.forwarded_allow_ips = forwarded_allow_ips  # pragma: full coverage
+            self.forwarded_port = forwarded_port
 
         if self.reload and self.workers > 1:
             logger.warning('"workers" flag is ignored when reloading is enabled.')
@@ -467,7 +470,7 @@ def load(self) -> None:
         if logger.getEffectiveLevel() <= TRACE_LOG_LEVEL:
             self.loaded_app = MessageLoggerMiddleware(self.loaded_app)
         if self.proxy_headers:
-            self.loaded_app = ProxyHeadersMiddleware(self.loaded_app, trusted_hosts=self.forwarded_allow_ips)
+            self.loaded_app = ProxyHeadersMiddleware(self.loaded_app, trusted_hosts=self.forwarded_allow_ips, forwarded_port=self.forwarded_port)
 
         self.loaded = True
 

diff --git a/uvicorn/main.py b/uvicorn/main.py
@@ -245,6 +245,12 @@ def print_version(ctx: click.Context, param: click.Parameter, value: bool) -> No
     "$FORWARDED_ALLOW_IPS environment variable if available, or '127.0.0.1'. "
     "The literal '*' means trust everything.",
 )
+@click.option(
+    "--forwarded-port/--no-forwarded-port",
+    is_flag=True,
+    default=True,
+    help="Enable/Disable X-Forwarded-Port to " "populate remote address info.",
+)
 @click.option(
     "--root-path",
     type=str,

diff --git a/uvicorn/middleware/proxy_headers.py b/uvicorn/middleware/proxy_headers.py
@@ -20,9 +20,11 @@ class ProxyHeadersMiddleware:
     - <https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Forwarded-For>
     """
 
-    def __init__(self, app: ASGI3Application, trusted_hosts: list[str] | str = "127.0.0.1") -> None:
+    def __init__(self, app: ASGI3Application, trusted_hosts: list[str] | str = "127.0.0.1",
+                 forwarded_port: bool = False) -> None:
         self.app = app
         self.trusted_hosts = _TrustedHosts(trusted_hosts)
+        self.forwarded_port = forwarded_port
 
     async def __call__(self, scope: Scope, receive: ASGIReceiveCallable, send: ASGISendCallable) -> None:
         if scope["type"] == "lifespan":
@@ -53,8 +55,13 @@ async def __call__(self, scope: Scope, receive: ASGIReceiveCallable, send: ASGIS
                     # See: https://github.com/encode/uvicorn/issues/1068
 
                     # We've lost the connecting client's port information by now,
-                    # so only include the host.
-                    port = 0
+                    # so unless X-Forwarded-Port is available and --forwarded-port is enabled,
+                    # only include the host.
+                    if self.forwarded_port and b"x-forwarded-port" in headers:
+                        x_forwarded_port = headers[b"x-forwarded-port"].decode("latin1")
+                        port = int(x_forwarded_port)
+                    else:
+                        port = 0
                     scope["client"] = (host, port)
 
         return await self.app(scope, receive, send)