https://issues.apache.org/bugzilla/show_bug.cgi?id=49948
Summary: RemoteIpValve should not suppress x-forwarded-for
header
Product: Tomcat 6
Version: 6.0.26
Platform: PC
OS/Version: Windows XP
Status: NEW
Severity: normal
Priority: P2
Component: Catalina
AssignedTo: [email protected]
ReportedBy: [email protected]
Currently the RemoteIpValve always hides the x-forwarded-for header from the
application. All other headers are preserved. This is very inconsistent.
We are implementing a proxy in tomcat, that sits behing an nginx instance. The
nginx correctly passes us the headers. We are however unable to extend them
properly. Our only option is to reconstruct the x-forwarded-for based on the
(incomplete) information available through the servlet api.
Whether the x-forwarded-for header is suppressed or not should at least be a
configuration option.
--
Configure bugmail: https://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
