Optionally enforce strict TLS SNI + HTTP Host matching, & misc. cleanup

We should look into a way to enable this by default when TLS client auth is configured for a server
author: Matthew Holt <mholt@users.noreply.github.com> 2019-06-26 16:03:29 -0600
committer: Matthew Holt <mholt@users.noreply.github.com> 2019-06-26 16:03:29 -0600
commit: 2b22d2e6ea7ffd17ae769bd8a2adae60e5a7d0bf (patch)
tree: 941d6117b28b18cd25556d5a272b1e32c2abdc5f /modules/caddyhttp/routes.go
parent: a524bcfe78e8067b8224b1794c6842d9c2c7e8cf (diff)
1 files changed, 5 insertions, 5 deletions
diff --git a/modules/caddyhttp/routes.go b/modules/caddyhttp/routes.go
index 8033b91..00bb8ba 100644
--- a/modules/caddyhttp/routes.go
+++ b/modules/caddyhttp/routes.go
@@ -162,11 +162,11 @@ func (routes RouteList) BuildCompositeRoute(rw http.ResponseWriter, req *http.Re
 }
 
 // wrapMiddleware wraps m such that it can be correctly
-// appended to a list of middleware. This is necessary
-// so that only the last middleware in a loop does not
-// become the only middleware of the stack, repeatedly
-// executed (i.e. it is necessary to keep a reference
-// to this m outside of the scope of a loop)!
+// appended to a list of middleware. This separate closure
+// is necessary so that only the last middleware in a loop
+// does not become the only middleware of the stack,
+// repeatedly executed (i.e. it is necessary to keep a
+// reference to this m outside of the scope of a loop)!
 func wrapMiddleware(m MiddlewareHandler) Middleware {
 	return func(next HandlerFunc) HandlerFunc {
 		return func(w http.ResponseWriter, r *http.Request) error {
author	Matthew Holt <mholt@users.noreply.github.com>	2019-06-26 16:03:29 -0600
committer	Matthew Holt <mholt@users.noreply.github.com>	2019-06-26 16:03:29 -0600
commit	2b22d2e6ea7ffd17ae769bd8a2adae60e5a7d0bf (patch)
tree	941d6117b28b18cd25556d5a272b1e32c2abdc5f /modules/caddyhttp/routes.go
parent	a524bcfe78e8067b8224b1794c6842d9c2c7e8cf (diff)