From b5e1f13437fb42906fe4cbf2f5ee7f7f947df501 Mon Sep 17 00:00:00 2001 From: Julio Date: Mon, 23 May 2016 11:13:46 +0200 Subject: [PATCH] Allow app_dev.php --- web/app_dev.php | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/web/app_dev.php b/web/app_dev.php index 1cd94896d7..9ac0ae0a07 100755 --- a/web/app_dev.php +++ b/web/app_dev.php @@ -14,7 +14,7 @@ umask(0000); // This check prevents access to debug front controllers that are deployed by accident to production servers. // Feel free to remove this, extend it, or make something more sophisticated. if (isset($_SERVER['HTTP_CLIENT_IP']) - || isset($_SERVER['HTTP_X_FORWARDED_FOR']) + // || isset($_SERVER['HTTP_X_FORWARDED_FOR']) || !(in_array(@$_SERVER['REMOTE_ADDR'], array('127.0.0.1', 'fe80::1', '::1')) || php_sapi_name() === 'cli-server') ) { header('HTTP/1.0 403 Forbidden');