Bug#440041: request-tracker3.6: sub Redirect() in ./lib/RT/Interface/Web.pm assumes wrong port when used via proxy
tag 440041 fixed-upstream thanks On Wed, Aug 29, 2007 at 01:35:56PM +0200, Robert Sander wrote: Package: request-tracker3.6 Version: 3.6.1-4 Severity: minor We have been using RT with apache behind an apache-ssl proxy. The proxy was doing SSL on port 443, and RT was running on port 80. The sub Redirect() in ./lib/RT/Interface/Web.pm now always returned a wrong URL because it got the port number from the apache environment. The environment contained 80 as port number as this was the port the proxy spoke to, but the user's web browser was talking to the proxy on port 443. This should be fixed in the upcoming request-tracker3.8 packages, quoting the upstream bug: we've added a config $RT::CanonicalizeRedirectURLs for this in 3.8. If we the variable is true, we won't update url from %ENV -- Niko Tyni nt...@debian.org -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#440041: request-tracker3.6: sub Redirect() in ./lib/RT/Interface/Web.pm assumes wrong port when used via proxy
Package: request-tracker3.6 Version: 3.6.1-4 Severity: minor Hi! We have been using RT with apache behind an apache-ssl proxy. The proxy was doing SSL on port 443, and RT was running on port 80. The sub Redirect() in ./lib/RT/Interface/Web.pm now always returned a wrong URL because it got the port number from the apache environment. The environment contained 80 as port number as this was the port the proxy spoke to, but the user's web browser was talking to the proxy on port 443. The browser now got an URL redirect to https://rt.company.com:80/ and failed as it was not able to speak SSL on port 80. We have solved that issue by moving the RT installation to the apache-ssl server running on port 443, removing the proxy situation. I am creating this bug report because I think the logic in this function has to be reviewed for situations like we encountered. -- Package-specific info: Changed files: There are locally modified files in /usr/local/share/request-tracker3.6/, these may (or may not) be the source of the problem. -- System Information: Debian Release: 4.0 APT prefers proposed-updates APT policy: (500, 'proposed-updates'), (500, 'stable') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.22.1-p4-server Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) (ignored: LC_ALL set to POSIX) Versions of packages request-tracker3.6 depends on: ii libapache-session-perl 1.81-1 Perl modules for keeping persisten ii libcache-cache-perl 1.05-2 Managed caches of persistent infor ii libcache-simple-timedexpiry- 0.26-1 Perl module to cache and expire ke ii libcalendar-simple-perl 1.17-2 Perl extension to create simple ca ii libclass-returnvalue-perl0.53-1 A return-value object that lets yo ii libdbd-mysql-perl3.0008-1A Perl5 database interface to the ii libdbi-perl 1.53-1 Perl5 database interface by Tim Bu ii libdbix-searchbuilder-perl 1.45-2 Encapsulate SQL queries and rows i ii libexception-class-perl 1.21-1 a module that allows you to declar ii libfcgi-perl 0.67-2 FastCGI Perl module ii libfreezethaw-perl 0.43-3 converting Perl structures to stri ii libgd-graph-perl 1.43.08-2.1 Graph Plotting Module for Perl 5 ii libgd-text-perl 0.86-3.1Text utilities for use with GD ii libhtml-mason-perl 1:1.35-3HTML::Mason Perl module ii libhtml-parser-perl 3.55-1 A collection of modules that parse ii libhtml-scrubber-perl0.08-3 Perl extension for scrubbing/sanit ii liblocale-maketext-fuzzy-per 0.02-2 Maketext from already interpolated ii liblocale-maketext-lexicon-p 0.62-1 Lexicon-handling backends for Loc ii liblog-dispatch-perl 2.11-1 Dispatches messages to multiple Lo ii libmailtools-perl1.74-1 Manipulate email in perl programs ii libmime-perl 5.420-0.1 Perl5 modules for MIME-compliant m ii libmldbm-perl2.01-1 Store multidimensional hash struct ii libmodule-versions-report-pe 1.02-3 Report versions of all modules in ii libparams-validate-perl 0.77-1 validate parameters to Perl method ii libregexp-common-perl2.120-4 Provide commonly requested regular ii libterm-readkey-perl 2.30-3 A perl module for simple terminal ii libtest-inline-perl 2.103-1 Perl extension for embed tests and ii libtext-autoformat-perl 1.13-1 Perl module for automatic text wra ii libtext-quoted-perl 1.8-3 Extract the structure of a quoted ii libtext-template-perl1.44-1.1Text::Template perl module ii libtext-wikiformat-perl 0.78-0.1translates Wiki formatted text int ii libtext-wrapper-perl 1.000-2 Simple word wrapping routine ii libtime-modules-perl 2003.1126-2 Various Perl modules for time/date ii libtree-simple-perl 1.17-1 A simple tree object ii libuniversal-require-perl0.10-1 Load modules from a variable ii libxml-rss-perl 1.05-1 Perl module for managing RSS (RDF ii libxml-simple-perl 2.14-5 Perl module for reading and writin ii perl 5.8.8-7 Larry Wall's Practical Extraction hi qmail [mail-transport-agent] 1.03fake MTA package ii rt3.6-apache 3.6.1-4 Apache 1 specific files for reques ii rt3.6-clients3.6.1-4 Mail gateway and command-line inte ii sysklogd [system-log-daemon] 1.4.1-18System Logging Daemon Versions of packages request-tracker3.6 recommends: ii mysql-server 5.0.32-7etch1 mysql database server (meta packag ii mysql-server-5.0 [mysql-se 5.0.32-7etch1 mysql database server binaries -- no debconf information Greetings -- Robert Sander Senior Manager Information Systems
