Re: [I] Plugin execution in 9.2.8 [trafficserver]

Fri, 14 Mar 2025 05:06:49 -0700 


abdulsalam3105 commented on issue #12064:
URL: 
https://github.com/apache/trafficserver/issues/12064#issuecomment-2724484092

   @shukitchan Thank you for the response, i have the tried the script which 
you recommended, and added during remap i.e. used @plugin and @pparam . but 
didnt achieve the results, but it prints log in that file. 
   
   then i tried below to get the url host 
   
   function do_remap()
       local file = io.open("/var/log/trafficserver/lua_output2.log", "a")
       local url_host = ts.client_request.get_url_host()
       file:write("New Host: " .. url_host .. "\n")
       ts.client_request.set_url_host('trafficserverfqdn')
       file:close()
       return TS_LUA_REMAP_DID_REMAP
       ts.debug(url_host)
   end
   
   in that file, it returns urlhost as IHS url, but didnt set url host. 
   
   let me quickly tell my architecture
   
   ATS -> IHS-> Application ( then application redirects to auth server which 
is also behind IHS) then once it authenticated, it redirects to ATS -> IHS -> 
application . 
   
   but now 
   
   ATS -> IHS-> Application ( then application redirects to auth server which 
is also behind IHS) then once it authenticated, it redirects to -> IHS -> 
application .  ( application thinks it is csrf attack since it is not an  
original request) 
   
   keypoint is redirect-uri and return parameter 
   
   < x-jsa-authorization-redirect: 
https://ihsurl.com/oidc/endpoint/jazzop/authorize?client_id=xxxxxxxxxx&response_type=code&state=security_token1%3DqubzMyXHqJkhCoVvX%2B1V4uXRQMJk6mJpx3AVPU879uQ%3D%26security_token2%3D5eA4KecA0eqxe4LlZ0z2cZW63baKS4bqXSMqAfk5sg8%3D%26return%3Dhttps%253A%252F%252FIHSurl.com%252Fccm%26scope%3Dopenid%2Bgeneral%2Bprofile%2Bemail%2B%26impersonation%3Dtrue&scope=openid+general+profile+email+&redirect_uri=https%3A%2F%2FIHSurl.com%2Fccm%2Fjsa
   
   somehow i need header need to rewrite. earlier i used header_rewrite plugin 
   
   


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: [email protected]

For queries about this service, please contact Infrastructure at:
[email protected]

Reply via email to