Hi.
I would like to suggest adding the ability to set your own header for http requests from mobile devices.
After reading this thread, I realized that the best protection right now is VPN.
But having a VPN on all the time for the sake of HA is such a shame…
And let’s be honest IP ban is not the solution.
A custom header will allow to drop traffic on balancer (haproxy, nginx), which will give some kind of 99% security with https traffic of course.
I think adding the ability to connect your own header in the http client in mobile apps is not the hardest task.
6 Likes
A custom header option in the app would be great!
1 Like
if it makes any difference the app uses its own user agent string
A custom header would be a brilliant feature. With it, we could allow access through Cloudflare access using a service token. Currently CF access doesn’t work in app due to the authentication dance, having this ability would solve it
8 Likes
I’m curious if you’ve found any way around this? I was looking at cloudflare access with a service token as well. Would have been pretty slick.
+1 To allow custom headers in the app
Someone opened a PR about this, let’s manifest your interest there with a 
emoji so moderators know we care about this feature!
4 Likes