fix: respect x-zitadel-forwarded header again (#8473)

# Which Problems Are Solved #8369 added the possibility to handle trusted domains for public hosts as response. Additionally, the OIDC issuer is extracted from the `DomainContext` and not from headers anymore. This accidentally dropped support for the `x-zitadel-forwarded`. # How the Problems Are Solved Added `x-zitadel-forwarded` in the list of additionally handled headers. # Additional Changes None # Additional Context - relates to #8369 - reported in Discord: https://discord.com/channels/927474939156643850/1275484169626980403
2025-08-11 21:17:32 +00:00 · 2024-08-21 18:36:16 +02:00
parent 08c139d3cb
commit b1f5b1979c
2 changed files with 26 additions and 24 deletions
--- a/internal/api/http/header.go
+++ b/internal/api/http/header.go
@@ -8,28 +8,29 @@ import (
 )

 const (
-	Authorization   = "authorization"
-	Accept          = "accept"
-	AcceptLanguage  = "accept-language"
-	CacheControl    = "cache-control"
-	ContentType     = "content-type"
-	ContentLength   = "content-length"
-	Expires         = "expires"
-	Location        = "location"
-	Origin          = "origin"
-	Pragma          = "pragma"
-	UserAgentHeader = "user-agent"
-	ForwardedFor    = "x-forwarded-for"
-	ForwardedHost   = "x-forwarded-host"
-	ForwardedProto  = "x-forwarded-proto"
-	Forwarded       = "forwarded"
-	XUserAgent      = "x-user-agent"
-	XGrpcWeb        = "x-grpc-web"
-	XRequestedWith  = "x-requested-with"
-	XRobotsTag      = "x-robots-tag"
-	IfNoneMatch     = "If-None-Match"
-	LastModified    = "Last-Modified"
-	Etag            = "Etag"
+	Authorization    = "authorization"
+	Accept           = "accept"
+	AcceptLanguage   = "accept-language"
+	CacheControl     = "cache-control"
+	ContentType      = "content-type"
+	ContentLength    = "content-length"
+	Expires          = "expires"
+	Location         = "location"
+	Origin           = "origin"
+	Pragma           = "pragma"
+	UserAgentHeader  = "user-agent"
+	ForwardedFor     = "x-forwarded-for"
+	ForwardedHost    = "x-forwarded-host"
+	ForwardedProto   = "x-forwarded-proto"
+	Forwarded        = "forwarded"
+	ZitadelForwarded = "x-zitadel-forwarded"
+	XUserAgent       = "x-user-agent"
+	XGrpcWeb         = "x-grpc-web"
+	XRequestedWith   = "x-requested-with"
+	XRobotsTag       = "x-robots-tag"
+	IfNoneMatch      = "If-None-Match"
+	LastModified     = "Last-Modified"
+	Etag             = "Etag"

 	ContentSecurityPolicy   = "content-security-policy"
 	XXSSProtection          = "x-xss-protection"