API - Google apps scripts call being detected as a reverse proxy despite no apparent proxy headers

Configuration
1

(originally asked on Discord)
Hey, I’m having a very strange issue with the reverse proxy protection (in http.forwarded) that I can’t wrap my head around… I don’t actually have a proxy set-up; but for some reason requests coming from Google seem to trigger “we have X-Forwarded-For, but config does not agree” (source code)
The strange thing is that if I use webhook.site to send that exact same request (with redacted auth header) I don’t get an x-forwarded-for and exporting the received request to curl; modifying the url, auth & host header… the call just goes through (also from one of my remote servers)
Does anyone have any thoughts what could be (false-positive?) triggering this? I already set logger to debut output for the forwarded component; sadly enough this isn’t actually giving me more logs HA logs:

 Logger: homeassistant.components.http.forwarded
Source: components/http/forwarded.py:114
Integration: HTTP (documentation, issues)
First occurred: 16:13:19 (2 occurrences)
Last logged: 16:17:48

    A request from a reverse proxy was received from 107.178.195.2, but your HTTP integration is not set-up for reverse proxies
    A request from a reverse proxy was received from 107.178.192.133, but your HTTP integration is not set-up for reverse proxies

timestamps match exactly with my requests, and ips also match google’s (107.178.195.0/24 IP range details - IPinfo.io)

TL;DR: HA thinks I’m using a reverse proxy for POST (api) requests coming from Apps script (Google sheets); while I’m not; and google (when making the same request to webhook.site) also doesn’t seem to include the header. Making the same call from a random VPS works as expected – debug logs (for the homeassistant.components.http.forwarded component) sadly enough don’t give extra logs Any clue what might be triggering it (couldn’t see anything obvious in the code myself) or any way (within HA) that I can properly see the request it sees? (I don’t want to simply add google’s ips as a trusted proxy, as that would be quite a security gap & they don’t seem to actually act like one outside HA)

image
image1153×208 38.4 KB

image
image894×265 35.5 KB

Thanks in advance for helping me investigate this issue!

2

Sadly enough (but as expected :confused: ) still the same on HA 2022.4.6

A request from a reverse proxy was received from 35.187.143.73, but your HTTP integration is not set-up for reverse proxies
A request from a reverse proxy was received from 35.187.143.73, but your HTTP integration is not set-up for reverse proxies838×211 22.7 KB

3

Anyone any clues?

4

I’ve worked around this issue by putting my own reverse proxy in front of it, which makes the request come from a trusted proxy…

5

Hi Jonas,

I’m experiencing the same, did you ever find out?

6

hi @jonasd,
I have the same problem, I tried this solution but it didn’t work. can you explain?

http:
  use_x_forwarded_for: true
  trusted_proxies:
      - 0.0.0.0/0

thanks

7

Can you elaborate on that, please? Explain how you did it, in noob instructions? Thanks in advance!