Documentation
¶
Index ¶
Constants ¶
This section is empty.
Variables ¶
View Source
var ConfigDefault = Config{}
ConfigDefault is the default config.
View Source
var ErrForbiddenHost = errors.New("hostauthorization: forbidden host")
ErrForbiddenHost is returned when the Host header does not match any allowed host.
Functions ¶
Types ¶
type Config ¶
type Config struct {
// Next defines a function to skip this middleware when returned true.
// Use this to exclude health check endpoints or other paths from host validation.
//
// Optional. Default: nil
Next func(c fiber.Ctx) bool
// AllowedHostsFunc is a dynamic validator called only when no static
// AllowedHosts rule matches. Receives the normalized hostname: port stripped,
// trailing dot removed, IPv6 brackets removed, lowercased.
// Return true to allow.
//
// Optional. Default: nil
AllowedHostsFunc func(host string) bool
// ErrorHandler is called when a request is rejected.
// Receives ErrForbiddenHost as the error.
//
// Optional. Default: returns 403 Forbidden.
ErrorHandler fiber.ErrorHandler
// AllowedHosts is the list of permitted host values.
// Supports two match types:
// - Exact: "api.myapp.com"
// - Subdomain: "*.myapp.com" (matches any subdomain, NOT the bare domain — list both for apex+subdomains)
//
// Entries are normalized at startup: port stripped, trailing dot removed,
// lowercased, IDN labels converted to Punycode, RFC 1035 length limits enforced
// (≤253 total / ≤63 per-label).
//
// Required if AllowedHostsFunc is nil.
AllowedHosts []string
}
Config defines the config for the host authorization middleware.
Source Files
Click to show internal directories.
Click to hide internal directories.