thats basically right. the proxy spec in http/1.1 etc copes with rewriting headers - but nothing I've seen rewrites the actual html content - this would be possible of course, but there would have to be a new module for apache to do it, and architecturally you'd be creating a potential bottleneck as the proxy server would have to parse all of the content passing through it.
Wim Godden wrote: >So there's no system which allows me to really proxy pages and 'modify' them so >that all future connections go through this 'proxy' as well ? > >Greetings, > >Wim > >Peter Viertel wrote: > > > >>yes, i think thats whats happening - you need to review the website >>content you are pointing at. For this to work you can't have any >>absolute hrefs, and also the backend site may issue redirects, for these >>to work you need a ProxyPassReverse which will rewrite the Location: >>header on any redirects the backend site may send. >> >> For example: >> >>ProxyPass /test http://other.subdomain.ourdomain.com/ >>ProxyPassReverse /test http://other.subdomain.ourdomain.com/ >> >>proxypassreverse unfortunately is not case insensitive, and the backend >>webserver may refer to itself canonically, so the location headers may >>have another hostname. Either fix up the backend webserver to match the >>proxypassreverse, or add extra proxypassreverse lines. >> >>The most common cause of redirects is the / bug handlers of tomcat, and >>IIS which kick in if your url ends with / and that resolves to a >>directory, then the webserver looks up what the directoryindex script is >>(eg. index.html) and sends a redirect. This is something to do with >>early revision browser releases, I have no idea which ones or if it >>matters anymore. >> >>Also note that mod_proxy got a big upgrade at apache release 1.3.23 that >>may help things along too in certain cases. >> >>[EMAIL PROTECTED] wrote: >> >> >> >>>Sounds like you have some absolute links rather than relative links. You can >>>also use >>>proxypass /test https://other-subdomain.ourdomain.com >>> >>>If the data needs to be secured between the proxy and the destination >>>server. >>> >>>- >>>John Airey >>>Internet systems support officer, ITCSD, Royal National Institute of the >>>Blind, >>>Bakewell Road, Peterborough PE2 6XU, >>>Tel.: +44 (0) 1733 375299 Fax: +44 (0) 1733 370848 [EMAIL PROTECTED] >>> >>>Is the statement 'There is no such thing as truth' true? >>> >>> >>> >>> >>> >>> >>>>-----Original Message----- >>>>From: Wim Godden [mailto:[EMAIL PROTECTED]] >>>>Sent: 12 June 2002 11:06 >>>>To: [EMAIL PROTECTED] >>>>Subject: Re: 1 certificate for several sites using redirection ? >>>> >>>> >>>>proxypass /test http://other-subdomain.ourdomain.com >>>>doesn't work properly... I get errors about the images being >>>>insecure and all links >>>>point to the wrong position. >>>> >>>> >>>>Peter Viertel wrote: >>>> >>>> >>>> >>>> >>>> >>>>>You could do that using reverse proxy, ie mod_proxy. >>>>>Redirects are not going to help. >>>>> >>>>>Wim Godden wrote: >>>>> >>>>> >>>>> >>>>> >>>>> >>>>>>Hi, >>>>>> >>>>>>I'd like to use a certificate to secure several of our >>>>>> >>>>>> >>>>>> >>>>>> >>>>subdomains... >>>> >>>> >>>> >>>> >>>>>>buying hundreds of certificates is simply too expensive. >>>>>>Is there some way to do this : >>>>>> >>>>>>- Install certificate on secure.ourdomain.com >>>>>>- Let people surf to >>>>>> >>>>>> >>>>>> >>>>>> >>>>>https://secure.ourdomain.com/other-subdomain.ourdomain.com/wh >>>>> >>>>> >>>>> >>>>> >>>at-ever-page.html >>> >>> >>> >>> >>>>>Thanks in advance. >>>>> >>>>> >>>>>Greetings, >>>>> >>>>>Wim Godden >>>>> >>>>>______________________________________________________________________ >>>>>Apache Interface to OpenSSL (mod_ssl) www.modssl.org >>>>>User Support Mailing List [EMAIL PROTECTED] >>>>>Automated List Manager [EMAIL PROTECTED] >>>>> >>>>> >>>>> >>>>> >>>>> >>>>> >>>>______________________________________________________________________ >>>>Apache Interface to OpenSSL (mod_ssl) www.modssl.org >>>>User Support Mailing List [EMAIL PROTECTED] >>>>Automated List Manager [EMAIL PROTECTED] >>>> >>>> >>>> >>>> >>>-- >>>------ >>>Adverteren.be - 100% Nederlandstalig adverteren op kwalitatief hoogstaande >>>sites ! >>> >>> >>>______________________________________________________________________ >>>Apache Interface to OpenSSL (mod_ssl) www.modssl.org >>>User Support Mailing List [EMAIL PROTECTED] >>>Automated List Manager [EMAIL PROTECTED] >>> >>>- >>> >>>NOTICE: The information contained in this email and any attachments is >>>confidential and may be legally privileged. If you are not the >>>intended recipient you are hereby notified that you must not use, >>>disclose, distribute, copy, print or rely on this email's content. If >>>you are not the intended recipient, please notify the sender >>>immediately and then delete the email and any attachments from your >>>system. >>> >>>RNIB has made strenuous efforts to ensure that emails and any >>>attachments generated by its staff are free from viruses. However, it >>>cannot accept any responsibility for any viruses which are >>>transmitted. We therefore recommend you scan all attachments. >>> >>>Please note that the statements and views expressed in this email >>>and any attachments are those of the author and do not necessarily >>>represent those of RNIB. >>> >>>RNIB Registered Charity Number: 226227 >>> >>>Website: http://www.rnib.org.uk >>> >>>14th June 2002 is RNIB Look Loud Day - visit http://www.lookloud.org.uk to >>>find out all about it. >>> >>>______________________________________________________________________ >>>Apache Interface to OpenSSL (mod_ssl) www.modssl.org >>>User Support Mailing List [EMAIL PROTECTED] >>>Automated List Manager [EMAIL PROTECTED] >>> >>> >>> >>> >>______________________________________________________________________ >>Apache Interface to OpenSSL (mod_ssl) www.modssl.org >>User Support Mailing List [EMAIL PROTECTED] >>Automated List Manager [EMAIL PROTECTED] >> >> > >-- >------ >Adverteren.be - 100% Nederlandstalig adverteren op kwalitatief hoogstaande sites >! > > >______________________________________________________________________ >Apache Interface to OpenSSL (mod_ssl) www.modssl.org >User Support Mailing List [EMAIL PROTECTED] >Automated List Manager [EMAIL PROTECTED] > > ______________________________________________________________________ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
