Disable direct access through frontend nginx in /reset/mail/

myvesta · web-flow · commit 4fa549c57019 · 2018-04-12T00:09:35.000+02:00
diff --git a/web/reset/mail/index.php b/web/reset/mail/index.php
@@ -22,6 +22,7 @@
 if ($ip == $_SERVER['SERVER_ADDR']) $ok=1;
 if ($ip == '127.0.0.1') $ok=1;
 if ($ok==0) exit;
+if (isset($_SERVER['HTTP_X_REAL_IP']) || isset($_SERVER['HTTP_X_FORWARDED_FOR'])) exit;
 
 //
 // sourceforge.net/projects/postfixadmin/
