D'ar meurzh 01 a viz Ebrel 2014 e 23 eur 46, « Cyril Bonté » he deus skrivet : > Le 01/04/2014 23:42, Bertrand Jacquin a écrit : > > Hi Cyril, > > > > D'ar meurzh 01 a viz Ebrel 2014 e 23 eur 35, « Cyril Bonté » he deus > > skrivet : > >> > >>> If bk_local has server UP in the farm, and request look like > >>> https://203.0.113.42/__bar, then everything is fine, request is nicely > >>> handled by bk_local/localhost. http://203.0.113.42/__bar is correctly > >>> redirected. > >>> > >>> If bk_local has no server UP in the farm, then the 'http-request > >>> redirect scheme' is always applied instead of a 503 response. I don't > >>> known if this is the really intended result. In the request > >>> (https://203.0.113.42/__bar), > >> > >> I'm not sure to understand. Did you want to write > >> http://203.0.113.42/__bar just above ? > > > > No https://203.0.113.42/__bar should not pass 'http-request redirect > > scheme' as not the all prerequisites are matched. > > > > I need the 'http-request redirect scheme' be applied only if request is > > for the right vhost (v-local) and for the right path (p-admin) and if > > is not a ssl request. > > > >> If it was supposed to be "http" instead of "https", I'd call it a > >> feature and you can use "nbsrv" to disable disable redirects when no > >> server are available. > > > > Sure, but I'm more trying to understand that behaviour here. > > OK, then I'm not convinced it happened. Do you have some captures that > make a https request being redirected ?
When bk_local/localhost is UP : $ curl -vk -so /dev/null https://203.0.113.42/__bar/ (...) > GET /__bar/ HTTP/1.1 > User-Agent: curl/7.35.0 > Host: 203.0.113.42 > Accept: */* > < HTTP/1.1 200 OK < Date: Tue, 01 Apr 2014 21:54:46 GMT * Server Apache is not blacklisted < Server: Apache < Expires: Tue, 01 Apr 2014 21:54:46 +0000 < Cache-Control: no-store, no-cache, must-revalidate, pre-check=0, post-check=0, max-age=0 < Last-Modified: Tue, 01 Apr 2014 21:54:46 +0000 < Transfer-Encoding: chunked < Content-Type: text/html; charset=utf-8 < Vary: Accept-Encoding < Strict-Transport-Security: max-age=16070400 { [data not shown] * Connection #0 to host 203.0.113.42 left intact When bk_local/localhost is DOWN : $ curl -vk -so /dev/null https://203.0.113.42/__bar/ (...) > GET /__bar/ HTTP/1.1 > User-Agent: curl/7.35.0 > Host: 203.0.113.42 > Accept: */* > < HTTP/1.1 301 Moved Permanently < Content-length: 0 < Location: https://203.0.113.42/__bar/ < Vary: Accept-Encoding < Strict-Transport-Security: max-age=16070400 < * Connection #0 to host 203.0.113.42 left intact -- Bertrand
