Skip to content

ClientHello as an axum extractor #180

New issue
New issue
Open
Open
ClientHello as an axum extractor#180
@Nekidev

Description

@Nekidev
Nekidev
opened on Dec 17, 2025

Hello! I need to get metadata about the TLS handshake, specifically the SNI, to prevent host header spoofing. I serve multiple clients from multiple custom hostnames, so being able to know within the request handler what the SNI being used is needed to be able to prevent host header spoofing attacks, which are quite serious here. Is this possible at the moment? Is there workaround if not?

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions