fix: filter out some headers that could leak user information

2024-08-14 23:50:45 +00:00 · 2024-04-05 20:17:44 +02:00 · 2024-04-05 20:17:44 +02:00 · 52896e779c
commit 52896e779c
parent a872d9f7b6
1 changed files with 3 additions and 0 deletions
--- a/src/main.rs
+++ b/src/main.rs
@ -121,6 +121,9 @@ fn is_header_allowed(header: &str) -> bool {
            | "user-agent"
            | "range"
            | "transfer-encoding"
+            | "x-real-ip"
+            | "origin"
+            | "referer"
    )
 }