express limit host
simple middleware to protect server from host
/x-forwarded-host
injection.
Usage
just install & use it as an express middleware
const createHostLimit = require("express-limit-host")
const express = require("express")
const app = express()
app.use(createHostLimit({
loopback: true,
allowList: [
'proxy-server-host.com',
'direct-service-host.com'
],
rejectStatusCode: 403
}))
// add your router/handler