Collected sources and patterns will appear here. Add from search, explore, or the patterns library.
HttpRequest -> HttpRequest
Takes an incoming HTTP request -> produces either an authorized request or a rejection based on Host header validity.
Problem it solves
Local web servers bound to localhost are vulnerable to DNS rebinding or cross-origin resource hijacking.
Consumes
Emits
The real projects this mechanism was found in. Attribution is the point — this is how the best teams actually do it.