Trustable X-Forwarded-For in ERP5 SR
This MR is for trustable X-Forwarded-For header parameter between frontend and ERP5 SR backend.
- backend HTTPd (apache for now) drops X-Forwarded-For header if the incoming connection does not have a valid client certificate.
- we can control trustable CAs for client certificate between frontend and backend by
frontend-caucase-url-listparameter. - frontend cluster exposes
backend-client-cacucase-urlparameter that issues client certificates to communicate with backend.
/cc @luke @vpelletier @tomo