You are viewing a plain text version of this content. The canonical link for it is here.
Posted to apache-bugdb@apache.org by Paul Courbis <Pa...@crm.mot.com> on 1998/09/16 17:12:17 UTC
mod_proxy/3009: RemoteProxy CAN'T request an authorization
>Number: 3009
>Category: mod_proxy
>Synopsis: RemoteProxy CAN'T request an authorization
>Confidential: no
>Severity: serious
>Priority: medium
>Responsible: apache
>State: open
>Class: sw-bug
>Submitter-Id: apache
>Arrival-Date: Wed Sep 16 08:20:00 PDT 1998
>Last-Modified:
>Originator: Paul.Courbis@crm.mot.com
>Organization:
apache
>Release: 1.3.1
>Environment:
HPUX 10.20 / gcc
>Description:
We have the following config here : our ap)ache proxy acts a a relay between
our clients and other proxies, one of which request a username/password.
The code in modules/proxy/proxy_http.c prevents apache to forward this
information to another host...
My feeling is that the RemoteProxy directive should include a flag telling
if such a field should be transmitted/forgottent. Peharps the ProxyVia directive
is reserved to do so ???
>How-To-Repeat:
>Fix:
>Audit-Trail:
>Unformatted:
[In order for any reply to be added to the PR database, ]
[you need to include <ap...@Apache.Org> in the Cc line ]
[and leave the subject line UNCHANGED. This is not done]
[automatically because of the potential for mail loops. ]
[If you do not include this Cc, your reply may be ig- ]
[nored unless you are responding to an explicit request ]
[from a developer. ]
[Reply only with text; DO NOT SEND ATTACHMENTS! ]
Re: mod_proxy/3009: RemoteProxy CAN'T request an authorization
Posted by Paul COURBIS <Pa...@crm.mot.com>.
Another improvement could be that when there are many remote proxy for
allowing to access the outside world, there could be :
- "spare" proxies (ie: if proxy #1 fails, then try proxy #2...)
- load balancing on proxies
...
Paul
According to apbugs@hyperreal.org <ap...@hyperreal.org> (on 09/16/98):
> Thank you very much for your problem report.
> It has the internal identification `mod_proxy/3009'.
> The individual assigned to look at your
> report is: apache.
>
> >Category: mod_proxy
> >Responsible: apache
> >Synopsis: RemoteProxy CAN'T request an authorization
> >Arrival-Date: Wed Sep 16 08:20:00 PDT 1998
--
-=-=-=-=-=- Paul COURBIS -=- Responsable Systemes Informatiques -=-=-=-=-=-
-=-=-=- Centre de Recherche Motorola -=- Paul.COURBIS@crm.mot.com -=-=-=-
-=- Voice: +33 (0)1 69.35.25.37 Fax: +33 (0)1 69.35.25.01 -=-
<legal>Opinions hereabove are my own and not those of my organization</legal>
Re: mod_proxy/3009: RemoteProxy CAN'T request an authorization
Posted by Paul COURBIS <Pa...@crm.mot.com>.
Futhermore ('bout proxy balancing / pool of proxy ) : should be interesting
to be able to log into the access_log file which proxy was used..
Paul
According to apbugs@hyperreal.org <ap...@hyperreal.org> (on 09/16/98):
> Thank you very much for your problem report.
> It has the internal identification `mod_proxy/3009'.
> The individual assigned to look at your
> report is: apache.
>
> >Category: mod_proxy
> >Responsible: apache
> >Synopsis: RemoteProxy CAN'T request an authorization
> >Arrival-Date: Wed Sep 16 08:20:00 PDT 1998
--
-=-=-=-=-=- Paul COURBIS -=- Responsable Systemes Informatiques -=-=-=-=-=-
-=-=-=- Centre de Recherche Motorola -=- Paul.COURBIS@crm.mot.com -=-=-=-
-=- Voice: +33 (0)1 69.35.25.37 Fax: +33 (0)1 69.35.25.01 -=-
<legal>Opinions hereabove are my own and not those of my organization</legal>
Re: mod_proxy/3009: RemoteProxy CAN'T request an authorization
Posted by Paul COURBIS <Pa...@crm.mot.com>.
The same problem exists with the CONNECT method. Temporarely Idid the following
change in proxy_connect.c
126,127d125
< array_header *reqhdrs_arr; /* plc */
< table_entry *reqhdrs; /* plc */
229,242c227
< /***************** Add authorization if known *****************/
< reqhdrs_arr = ap_table_elts(r->headers_in);
< reqhdrs = (table_entry *) reqhdrs_arr->elts;
< for (i = 0; i < reqhdrs_arr->nelts; i++)
< {
< if (reqhdrs[i].key == NULL || reqhdrs[i].val == NULL
< || strcasecmp(reqhdrs[i].key, "Proxy-Authorization") )
< {
< continue;
< }
< ap_snprintf(buffer, sizeof(buffer),
< "Proxy-Authorization: %s" CRLF, reqhdrs[i].val );
< }
< ap_snprintf(buffer+strlen(buffer), sizeof(buffer)-strlen(buffer),
---
> ap_snprintf(buffer, sizeof(buffer),
244d228
< /**************************************************************/
Problem : it forward the authorization to every remote proxy... Should keep
a table of which proxy asked an auth (?)
BTW: shouldn't the User-Agent be sent to ?
Paul
According to apbugs@hyperreal.org <ap...@hyperreal.org> (on 09/16/98):
> Thank you very much for your problem report.
> It has the internal identification `mod_proxy/3009'.
> The individual assigned to look at your
> report is: apache.
>
> >Category: mod_proxy
> >Responsible: apache
> >Synopsis: RemoteProxy CAN'T request an authorization
> >Arrival-Date: Wed Sep 16 08:20:00 PDT 1998
--
-=-=-=-=-=- Paul COURBIS -=- Responsable Systemes Informatiques -=-=-=-=-=-
-=-=-=- Centre de Recherche Motorola -=- Paul.COURBIS@crm.mot.com -=-=-=-
-=- Voice: +33 (0)1 69.35.25.37 Fax: +33 (0)1 69.35.25.01 -=-
<legal>Opinions hereabove are my own and not those of my organization</legal>