https://bz.apache.org/bugzilla/show_bug.cgi?id=70091
--- Comment #2 from Mark Thomas <[email protected]> --- I'm in agreement with schultz that a scheme mis-match should required some form of explicit configuration before it is accepted. RemoteIpValve is the generic solution for that but it could be argued that it is excessive overhead for the TLS termination case. I started to look at this when the issue was raised on the users list but paused that work waiting for the discussion to develop but it didn't really get going. I'll look at this now as if we want to do something for the June releases, we'll need to be quick. A couple of questions to Ivaylo Zhelev to understand the context: - Can the reverse proxy be configured to set the scheme to http rather than https? - Can the reverse proxy be configured to proxy over h2 rather than h2c? Meanwhile, I'm going to remind myself of the current state of the various connectors. -- You are receiving this mail because: You are the assignee for the bug. --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
