feat: validate proxy targets during signing and proxy fetch

This commit is contained in:
2026-06-26 23:56:23 +02:00
parent f8e3f89e42
commit 5338c61a5d
3 changed files with 12 additions and 3 deletions

View File

@@ -4,6 +4,7 @@ import (
"context"
"fmt"
"mal/internal/observability"
"mal/internal/playback/proxytarget"
netutil "mal/pkg/net"
"net/http"
@@ -11,6 +12,10 @@ import (
)
func newProxyRequest(ctx context.Context, targetURL string, referer string) (*http.Request, error) {
if err := proxytarget.Validate(targetURL); err != nil {
return nil, fmt.Errorf("validate proxy target %q: %w", targetURL, err)
}
req, err := http.NewRequestWithContext(ctx, http.MethodGet, targetURL, nil)
if err != nil {
return nil, fmt.Errorf("build proxy request for %q: %w", targetURL, err)