Hi spfma.tech.
Uff, the mail is quite hard to read but looks like you are on ubuntu.
Maybe this page can help to solve your issue.
Enable TLSv1 in Ubuntu 20.04
https://ndk.sytes.net/wordpress/?p=1169
Regards
Alex
On Thu, 09 Jun 2022 09:58:10 +0200
spfma.t...@e.mail.fr wrote:
> Hi, Thanks
Hi.
On Fri, 3 Jun 2022 17:12:25 +0200
Seena Fallah wrote:
> When using the below config to have 100req/s rate-limiting after passing
> the 100req/s all of the reqs will deny not reqs more than 100req/s!
> ```
> listen test
> bind :8000
> stick-table type ip size 100k expire 30s store
Hi.
On Sat, 28 May 2022 11:42:17 +
Ajay Mahto wrote:
> Unsubscribe me.
Feel free to do it by your self.
https://www.haproxy.org/#tact
Regards
Alex
> Regards,
>
> Ajay Kumar Mahto,
> Lead DevOps Engineer,
> NPCI, Hyderabad
> +91 8987510264
>
> From: Willy
Hi Ryan.
On Thu, 26 May 2022 13:28:58 -0500
"Ryan O'Hara" wrote:
> On Wed, May 25, 2022 at 11:15 AM William Lallemand
> wrote:
>
> > On Tue, May 24, 2022 at 08:56:14PM +, Alford, Mark wrote:
> > > Do you have instruction on the exact library needed to fo the full
> > install on RHEL 7 and
Hi.
On Tue, 24 May 2022 20:56:14 +
"Alford, Mark" wrote:
> Do you have instruction on the exact library needed to fo the full install on
> RHEL 7 and RHEL 8
>
> I read the INSTALL doc in the tar ball and the did the make command and it
> failed because of LUA but lua.2.5.3 is installed
On Fri, 20 May 2022 12:16:07 +0100
Mark Zealey wrote:
> Thanks, we may use this for a very rough proof-of-concept. However we
> are dealing with millions of concurrent connections, 10-100 million
> connections per day, so we'd prefer to pay someone to develop (+ test!)
> something for haproxy
Hi Mark.
On Thu, 19 May 2022 17:29:37 +0100
Mark Zealey wrote:
> Hi there,
>
> We are using HAProxy to terminate and balance TCP streams (XMPP) between
> our apps and our service infrastructure. We are currently running
> XMPP-level gzip compression but I'm interested in potentially shifting
>
Hi.
On Mon, 2 May 2022 14:44:45 +
Dave Swinton wrote:
> Do you have a repository for the current releases in RPM? We are currently
> using 1.8 but would like to move to 2.5.x after some internal testing but
> don't see any direct links to an RPM from the download page.
You can build your
Hi Nick.
On Sat, 30 Apr 2022 05:44:09 +
Nick Owen wrote:
> So I am pretty new to networking and I am not quite sure how to set up the
> config file correctly. I just want a simple reverse proxy and I have created
> a diagram to show you how’d I’d like it configured. If you have any sites or
Hi.
Anyone any Idea about the question below?
Regards
Alex
On Sat, 23 Apr 2022 11:05:36 +0200
Aleksandar Lazic wrote:
> Hi.
>
> I'm not sure if I understand the doc properly.
>
> https://docs.haproxy.org/2.2/configuration.html#nbthread
> ```
> This setting is only a
On Tue, 26 Apr 2022 15:03:51 +0200
Valerio Pachera wrote:
> Hi, I have several backend configuration that make use of a custom script:
>
> external-check command 'custom-script.sh'
>
> The script read uses the environment variables such as $HAPROXY_PROXY_NAME.
> I would like to be able to set
Hi,
On Tue, 26 Apr 2022 03:32:16 -0700
Ivana Paul wrote:
> Hello haproxy.org
[SPAM Content]
New Idea for spam "learning platform" :-)
I never heard anything about "SMO services" and now I know it's this.
Social Media Optimization (SMO) Services
Regard
Alex
Hi.
I'm not sure if I understand the doc properly.
https://docs.haproxy.org/2.2/configuration.html#nbthread
```
This setting is only available when support for threads was built in. It
makes haproxy run on threads. This is exclusive with "nbproc". While
"nbproc" historically used to be the only
Hi.
This patch removes some double blanks.
Regards
Alex
>From a65450d3da357c659b00bd3ecb5a038a1f827692 Mon Sep 17 00:00:00 2001
From: Aleksandar Lazic
Date: Wed, 30 Mar 2022 00:11:40 +0200
Subject: [PATCH] DOC: remove double blanks in confiuration.txt
Double blanks in keywords are not g
Hi Willy.
On Sat, 26 Mar 2022 10:22:02 +0100
Willy Tarreau wrote:
> Hi,
>
> HAProxy 2.6-dev4 was released on 2022/03/26. It added 80 new commits
> after version 2.6-dev3.
>
> The activity started to calm down a bit, which is good because we're
> roughly 2 months before the release and it will
On 15.03.22 05:36, Eli Bechavod wrote:
Hii guys,
I am looking for rpm to version 2.4.14 and didn’t found that ..
Why on image base centos/rhel did you stop in 1.8 ? I saw that I can install
with a makefile but it old way .. :( .
I would to sound if you have any solutions
You can create a
Hi Shawn.
On 01.03.22 23:09, Shawn Heisey wrote:
I was thinking about ways to help pinpoint problems a client is having
connecting to services. And a thought
occurred to me.
Is there any kind of software available that can stand up a broken HTTP server,
such that it is broken in very
Hi.
On 28.02.22 13:55, Branitsky, Norman wrote:
Future requirement for HAProxy?
https://datatracker.ietf.org/doc/draft-kampanakis-tls-scas-latest/
From my point of view is this draft heavily based on the implementation of the
underlaying TLS library.
For everyone which want to know what
Hi Willy.
On 25.02.22 14:54, Willy Tarreau wrote:
Hi Alex,
On Thu, Feb 24, 2022 at 03:03:59AM +0100, Aleksandar Lazic wrote:
Hi.
Here the first patch for feature request "New Balancing algorithm (Peak) EWMA
#1570"
Note, I don't think it is needed for this algo as long as we i
Hi.
Here the first patch for feature request "New Balancing algorithm (Peak) EWMA
#1570"
regards
AlexFrom e95bf6a4bf107fdc59696c4b4a4ef7b03133b813 Mon Sep 17 00:00:00 2001
From: Aleksandar Lazic
Date: Thu, 24 Feb 2022 02:56:21 +0100
Subject: [PATCH] MINOR: sample: Add srv_rtt se
Hi.
On 10/02/2022 10:25, Gowri Shankar wrote:
Im trying to install haproxy for loadbalancing for my servers,but im
not able install from my windows system.Is there ha proxy available
for windows, please give and help us with documentation.
Well I don't think that there is a native Windows
Hi.
On 31.01.22 16:51, Roberto Carna wrote:
Dear all, I have haproxy-1.5.18-3.el7.x86_64 running OK.
You should consider to use a maintained version as 1.5 is End of Life from the
community.
https://www.haproxy.org/
https://github.com/DBezemer/rpm-haproxy
Development area are claiming for
On 12.01.22 21:52, Andrew Anderson wrote:
On Wed, Jan 12, 2022 at 11:58 AM Aleksandar Lazic mailto:al-hapr...@none.at>> wrote:
Well, looks like you want a forward proxy like squid not a reverse proxy
like haproxy.
The application being load balanced is a proxy, so http
On 12.01.22 17:06, Andrew Anderson wrote:
On Thu, Dec 30, 2021 at 10:15 PM Willy Tarreau mailto:w...@1wt.eu>> wrote:
On Wed, Dec 29, 2021 at 12:29:11PM +0100, Aleksandar Lazic wrote:
> > 0 CONNECT download.eclipse.org:443 HTTP/1.1\r\n
> &g
On 04.01.22 14:10, Christopher Faulet wrote:
Le 1/4/22 à 10:26, Aleksandar Lazic a écrit :
On 04.01.22 10:16, Christopher Faulet wrote:
Le 12/25/21 à 23:59, Aleksandar Lazic a écrit :
Hi.
as the message tell us that we should report this to the developers I do so :-)
```
Dec 24 01:10:31
On 04.01.22 10:16, Christopher Faulet wrote:
Le 12/25/21 à 23:59, Aleksandar Lazic a écrit :
Hi.
as the message tell us that we should report this to the developers I do so :-)
```
Dec 24 01:10:31 lb1 haproxy[20008]: A bogus STREAM [0x559faa07b4f0] is spinning
at 204371 calls per second
Hi.
On 01.01.22 20:56, Henning Svane wrote:
Hi
I have used it for some time in PFsense, but know made a Linux installation and now the configuration
give me some troubles.
What have I done wrong here below?
As I cannot see what I should have done different, but sudo haproxy -c -f
Hi.
On 28.12.21 19:35, brendan kearney wrote:
list members,
i am running haproxy, and see some errors with requests. i am trying to
understand why the errors are being thrown. haproxy version and error
info below. i am thinking that the host header is being exposed outside
the TLS
Hi.
as the message tell us that we should report this to the developers I do so :-)
```
Dec 24 01:10:31 lb1 haproxy[20008]: A bogus STREAM [0x559faa07b4f0] is spinning
at 204371 calls per second
and refuses to die, aborting now!
Please report this error to developers
Hi.
On 20.12.21 09:40, Christoph Kukulies wrote:
Due to some recent action I did from some may outdated instructions for haproxy
1.6 under Ubuntu
I have a left off broken haproxy repo which comes up everytim I’m doing
apt-updates:
Ign:3 http://ppa.launchpad.net/vbernat/haproxy-1.6/ubuntu
On 19.12.21 13:52, Willy Tarreau wrote:
Hi Aleks,
On Sun, Dec 19, 2021 at 01:43:01PM +0100, Aleksandar Lazic wrote:
Do you agree that we now can add HAProxy to that list :-)
https://github.com/quicwg/base-drafts/wiki/Implementations
Ideally we should submit it once we have a public server
Hi.
Do you agree that we now can add HAProxy to that list :-)
https://github.com/quicwg/base-drafts/wiki/Implementations
My suggestion, please help me to file the ??:
IETF QUIC Transport
HAProxy:
QUIC implementation in HAProxy
Language: C
Version: draft-29??
Roles: Server,
Hi.
On 14.12.21 10:18, Olivier D wrote:
Hi,
Le lun. 13 déc. 2021 à 19:38, John Lauro mailto:johnala...@gmail.com>> a écrit :
http-request deny deny_status 405 if { url_sub -i "\$\{jndi:" or hdr_sub(user-agent)
-i "\$\{jndi:" }
was not catching the bad traffic. I think the escapes
On 13.12.21 14:53, Lukas Tribus wrote:
On Mon, 13 Dec 2021 at 14:43, Aleksandar Lazic wrote:
Well I go the other way around.
The application must know what data are allowed, verify the input and if the
input is not valid discard it.´
You clearly did not understand my point so let me try
On 13.12.21 14:03, Lukas Tribus wrote:
On Mon, 13 Dec 2021 at 13:25, Aleksandar Lazic wrote:
1. Why is a input from out site of the application passed unchecked to the
logging library!
Because you can't predict the future.
When you know that your backend is SQL, you escape what's necessary
On 13.12.21 11:48, Olivier D wrote:
Hello there,
If you don't know yet, a CVE was published on friday about library log4j,
allowing a remote code execution
with a crafted HTTP request.
We would like to filter these requests on HAProxy to lower the exposition. At
peak times, 20% of our web
On 08.12.21 10:20, Christopher Faulet wrote:
Le 12/6/21 à 08:25, Christopher Faulet a écrit :
Le 12/4/21 à 13:25, Aleksandar Lazic a écrit :
Hi.
I try to capture the response header "dst_conn" from "http-request return" but
in %hs isn't the value.
```
podman logs -f
Hi.
Anyone which can help to protect the backen with backend states?
Regards
Alex
On 05.12.21 11:42, Aleksandar Lazic wrote:
Hi.
I try to protect an backend server against a overload within a master/master
setup.
The test setup looks like this
lb1: 8081 \
-hap-dest: 8080
lb2
On 06.12.21 08:25, Christopher Faulet wrote:
Le 12/4/21 à 13:25, Aleksandar Lazic a écrit :
Hi.
I try to capture the response header "dst_conn" from "http-request return" but
in %hs isn't the value.
```
podman logs -f haproxy-dest
[NOTICE] (1) : New worker #1 (3) forke
Hi.
I try to protect an backend server against a overload within a master/master
setup.
The test setup looks like this
lb1: 8081 \
-hap-dest: 8080
lb2: 8082 /
When I now call lb1 with curl the "tracker/quota1" gpc is increased and the
second request is denied.
The problem is that
Hi.
I try to capture the response header "dst_conn" from "http-request return" but
in %hs isn't the value.
```
podman logs -f haproxy-dest
[NOTICE] (1) : New worker #1 (3) forked
<6>[04/Dec/2021:12:14:34.437] 200 58 - - LR-- {} "GET / HTTP/1.1"
<6>[04/Dec/2021:12:14:34.437] 200 58 - - LR--
On 02.12.21 15:12, Frank Wall wrote:
On 2021-12-02 02:16, Aleksandar Lazic wrote:
I try to test some limits with peers and wanted to test "maxconn 0"
before I start with the peers.
Should "maxconn 0" work?
I expect to get connection refused or similar and and 500 in the lo
Hi.
I try to test some limits with peers and wanted to test "maxconn 0" before I
start with the peers.
Should "maxconn 0" work?
I expect to get connection refused or similar and and 500 in the log but both
curls get a 200
```
# curl -v http://127.0.0.1:8080/; curl -v http://127.0.0.1:8080/
Hi Joao.
Thank you very much. I will give it a try.
Regards
Alex
On 10.11.21 22:25, Joao Morais wrote:
Em 8 de nov. de 2021, à(s) 08:26, Aleksandar Lazic
escreveu:
Hi.
I have 2 LB's which should limit the connection to one backend.
I would try to use "conn_cur" in a s
Hi.
Have anybody some hints or tips about the question?
Regards
Alex
On 08.11.21 12:26, Aleksandar Lazic wrote:
Hi.
I have 2 LB's which should limit the connection to one backend.
I would try to use "conn_cur" in a stick table and share it via peers.
Have anyone such a soluti
Hi.
I have 2 LB's which should limit the connection to one backend.
I would try to use "conn_cur" in a stick table and share it via peers.
Have anyone such a solution already in place?
That's my assuption for the config.
```
peers be_pixel_peers
bind 9123
log global
localpeer {{
On 04.11.21 15:28, Willy Tarreau wrote:
Hello,
as some of you know, 2.5 will come with a new "option httpslog" to ease
logging some useful TLS info by default.
While running some tests in production with the error-log-format, I
realized that we're not logging the SNI in "httpslog", and that
On 16.10.21 16:22, Willy Tarreau wrote:
Hi,
HAProxy 2.5-dev10 was released on 2021/10/16. It added 75 new commits
after version 2.5-dev9.
The smoke is progressively being blown away and we're starting to see
clearer what final 2.5 will look like.
In completely random order, here are the main
On 08.09.21 11:07, Willy Tarreau wrote:
On Wed, Sep 08, 2021 at 01:58:00PM +0500, ??? wrote:
??, 8 . 2021 ?. ? 13:54, Willy Tarreau :
On Wed, Sep 08, 2021 at 12:05:23PM +0500, ??? wrote:
Hello, Bob
I tracked an issue https://github.com/haproxy/haproxy/issues/1386
On 17.08.21 16:58, Willy Tarreau wrote:
Hi Alex,
On Tue, Aug 17, 2021 at 02:19:38PM +0200, Aleksandar Lazic wrote:
```
3424 if ((curproxy->mode != PR_MODE_HTTP) &&
(curproxy->options & PR_O_REUSE_MASK) != PR_O_REUSE_NEVR)
3425
Hi.
In the doc is this part
http://cbonte.github.io/haproxy-dconv/2.4/configuration.html#4-http-reuse
```
By default, a connection established between HAProxy and the backend server
which is considered safe for reuse is moved back to the server's idle
connections pool so that any other request
On 11.08.21 09:04, Willy Tarreau wrote:
Hi Aleks,
On Mon, Aug 09, 2021 at 06:40:29PM +0200, Aleksandar Lazic wrote:
Hi.
We use the HAProxy 2.4 image which have now HAProxy 2.4.2.
https://hub.docker.com/layers/haproxy/library/haproxy/2.4/images/sha256
Hi.
We use the HAProxy 2.4 image which have now HAProxy 2.4.2.
https://hub.docker.com/layers/haproxy/library/haproxy/2.4/images/sha256-d5e2a5261d6367c31c8ce9b2e692fe67237bdc29f37f2e153d346e8b0dc7c13b?context=explore
I get this message for dynamic cookies.
```
[WARNING] (1) : We generated two
Hi.
On 16.07.21 14:34, Anilton Silva Fernandes wrote:
Hi there…
Can I get another HELP:
This time, I want to receive a request, and check for URL to know which backend
should be call.
This is my config:
frontend web_accounts
mode tcp
bind 10.15.1.12:443
default_backend
On 16.07.21 10:27, Илья Шипицин wrote:
I wonder if Kubernetes has sort of ingress compliance test. Or is it up to
ingress itself
Yes, there is such a thing but I never used it.
https://github.com/kubernetes-sigs/ingress-controller-conformance
On Fri, Jul 16, 2021, 1:21 PM Aleksandar Lazic
Hi.
FYI that the 1.22 have some changes which also impacts Ingress and Endpoints.
https://kubernetes.io/docs/reference/using-api/deprecation-guide/#v1-22
Regards
Alex
On 08.07.21 19:44, Aleksandar Lazic wrote:
On 08.07.21 18:33, Willy Tarreau wrote:
Hi all,
Amaury discovered that "option http_proxy" was broken. I quickly checked
when it started, and it got broken with the introduction of HTX in 1.9
three years ago. It still used to work in l
On 08.07.21 18:33, Willy Tarreau wrote:
Hi all,
Amaury discovered that "option http_proxy" was broken. I quickly checked
when it started, and it got broken with the introduction of HTX in 1.9
three years ago. It still used to work in legacy mode in 1.9 and 2.0
but 2.0 uses HTX by default and
On 03.07.21 13:27, Илья Шипицин wrote:
сб, 3 июл. 2021 г. в 16:22, Aleksandar Lazic mailto:al-hapr...@none.at>>:
Hi Remi.
On 02.07.21 16:26, Remi Tricot-Le Breton wrote:
> Hello list,
>
> Some work in ongoing to ease connection error and SSL handshake
Hi Remi.
On 02.07.21 16:26, Remi Tricot-Le Breton wrote:
Hello list,
Some work in ongoing to ease connection error and SSL handshake error logging.
This will rely on some new sample fetches that could be added to a custom
log-format string.
In order to ease SSL logging and debugging, we will
Hi.
when someone works again on src/queue.c could be this typo fixed.
http://git.haproxy.org/?p=haproxy.git;a=blob;f=src/queue.c;h=6d3aa9a12bcd6078d1b5a76969da4104a6adb1bd;hb=HEAD#l47
```
44 * - a pendconn_add() is only performed by the stream which will own the
45 * pendconn ; the
Hi.
On 11.06.21 18:07, Aleksandar Lazic wrote:
Hi.
I use haproxy 2.4 with this fe config.
```
global
log stdout format raw daemon
daemon
maxconn 2
stats socket /run/haproxy/admin.sock mode 660 level admin expose-fd
listeners
stats timeout 30s
Hi.
I use haproxy 2.4 with this fe config.
```
global
log stdout format raw daemon
daemon
maxconn 2
stats socket /run/haproxy/admin.sock mode 660 level admin expose-fd
listeners
stats timeout 30s
tune.ssl.default-dh-param 2048
# Default SSL material locations
Hi.
This patch fixes the usage of req_ssl_sni in the doc.
Any plan to remove the old keyword or add some warning that this
keyword is deprecated?
Regards
Alex
>From 84fe0fa89548c384322f47bc3eb37ea9843d0eb8 Mon Sep 17 00:00:00 2001
From: Alex
Date: Sat, 5 Jun 2021 13:23:08 +0200
Subject:
On 04.06.21 21:32, Jim Freeman wrote:
https://developer.chrome.com/docs/extensions/reference/proxy/
supports SOCKS4/SOCKS5
Does anyone know of any in-browser VPN/proxy extensions that support
Willy's Proxy Protocol ?
https://www.haproxy.com/blog/haproxy/proxy-protocol/ enumerates some
of the
On 02.06.21 11:38, Christopher Faulet wrote:
Le 6/1/21 à 8:26 PM, Aleksandar Lazic a écrit :
On 01.06.21 14:23, Tim Düsterhus wrote:
Aleks,
On 6/1/21 10:30 AM, Aleksandar Lazic wrote:
This phrasing is understandable to me, but now I'm wondering if this is the best
solution. Maybe the already
On 01.06.21 14:23, Tim Düsterhus wrote:
Aleks,
On 6/1/21 10:30 AM, Aleksandar Lazic wrote:
This phrasing is understandable to me, but now I'm wondering if this is the
best solution. Maybe the already existing user-configurable unique request ID
should instead be sent to the SPOE
Tim,
Jun 1, 2021 9:50:17 AM Tim Düsterhus :
> Aleks,
>
> On 6/1/21 1:03 AM, Aleksandar Lazic wrote:
>>>> srv_conn([/]) : integer
>>>> Returns an integer value corresponding to the number of currently
>>>> established
>>>>
Tim.
On 31.05.21 23:23, Tim Düsterhus wrote:
Aleks,
On 5/31/21 9:35 PM, Aleksandar Lazic wrote:
While I try to get the stream id from spoa I recognized that there is no fetch
method for the streamID.
Attached a patch which adds the fetch sample for the stream id.
I assume it could be back
Fix alphabetical order of uuid
>From bb84a45b848b879f41ab37343b50057323a6ff19 Mon Sep 17 00:00:00 2001
From: Alexandar Lazic
Date: Tue, 1 Jun 2021 00:27:01 +0200
Subject: [PATCH] DOC/MINOR: move uuid in the configuration to the right
alphabetical order
This patch can be backported up to 2.1
Hi.
On 31.05.21 14:23, Aleksandar Lazic wrote:
Hi.
While I try to get the stream id from spoa I recognized that there is no fetch
method for the streamID.
Attached a patch which adds the fetch sample for the stream id.
I assume it could be back ported up to version 2.0
Regards
Alex
Hi.
While I try to get the stream id from spoa I recognized that there is no fetch
method for the streamID.
The discussion is here.
https://github.com/criteo/haproxy-spoe-go/issues/28
That's the sid in filter spoa log output.
SPOE: [agent-on-http-req] sid=88 st=0
0/0/0/0/0 1/1 0/0 10/33
Hi.
I wanted to cleanup some old issues but was not able due to the fact
that I'm not sure if the bugs are still valid, especially for 1.8/1.9
and previous versions.
https://github.com/haproxy/haproxy/issues?page=10=is%3Aissue+is%3Aopen
It would be nice when someone with more knowledge then I
On 01.05.21 19:45, Julien Pivotto wrote:
On 01 May 18:40, Aleksandar Lazic wrote:
On 01.05.21 14:38, Julien Pivotto wrote:
I do not know what you are trying to achieve.
I try to add on the first line of defense => HAProxy, the possibility to protect
the backend attack without to t
On 01.05.21 15:08, Tim Düsterhus wrote:
Aleks,
On 5/1/21 1:42 PM, Aleksandar Lazic wrote:
# Extract the JSON Web Algorithms (JWA) from Bearer Token.
http-request set-var(txn.jwt_algo)
req.hdr(Authorization),word(1,.),ub64dec,json_query('$.alg') if
bearer_header_exist
Trusting
ell yes, thanks for shareing.
There are some envirnoments where you can't use SPOE and therfore it would be
nice
to have the option to verify the Token before any connections goes to any
backend or
SPOE agent.
On 01 May 13:42, Aleksandar Lazic wrote:
On 30.04.21 02:01, Aleksandar Lazic wr
Hi.
On 01.05.21 09:14, Willy Tarreau wrote:
Hi,
HAProxy 2.4-dev18 was released on 2021/05/01. It added 51 new commits
after version 2.4-dev17.
It seems that it's been quite a calm week in terms of development, with
most of the time having been spent on old bugs that are not even *that*
On 30.04.21 02:01, Aleksandar Lazic wrote:
Hi.
I think about to integrate the "l8w8jwt_decode(...)" into HAProxy.
https://github.com/GlitchedPolygons/l8w8jwt
The RS* methods requires some "RSA_PRIVATE_KEY[] = ..." and I'm not sure
what's the best method for a sampl
Hi.
I think about to integrate the "l8w8jwt_decode(...)" into HAProxy.
https://github.com/GlitchedPolygons/l8w8jwt
The RS* methods requires some "RSA_PRIVATE_KEY[] = ..." and I'm not sure
what's the best method for a sample to read such a key in HAProxy converters.
My suggestion for the
Hi.
attach the fix for set-timeout.
Regards
Alex
>From 8ca8f7385a16894a6c74cd31d1b8507fc32fb36e Mon Sep 17 00:00:00 2001
From: Alex
Date: Tue, 27 Apr 2021 12:57:07 +0200
Subject: [PATCH] DOC: general: fix example in set-timeout
The alternative arguments are always in curly brackets, let's fix
Hi.
The HTML converter expects some formats to recognize if a keyword is a
keyword.
Regards
alex
>From 9ed588c09a3ceb3af62bc9e4f9c7950fe0c58c7f Mon Sep 17 00:00:00 2001
From: Alex
Date: Sat, 24 Apr 2021 13:02:21 +0200
Subject: [PATCH] DOC: general: fix white spaces for HTML converter
The HTML
Hi.
Please can you share youre config an haproxy -vv
Regards
Alex
Apr 17, 2021 5:34:38 PM Marcello Lorenzi :
> Hi All,
> We're experiencing an issue on our haproxy 2.2 instance. We configured some
> backends and all worked fine but if we tried to forward some requests with
> the header
On 17.04.21 13:23, Tim Düsterhus wrote:
Willy,
On 4/17/21 12:09 PM, Willy Tarreau wrote:
With the renaming already made I consider the configuration syntax to be
stable enough for a 2.4. I'll leave the final decision regarding that up to
you, though. Especially since 2.4 is going to be an LTS.
Hi.
How difficult will it be to add a bandwidth limitation into HAProxy similar to
the nginx feature?
https://nginx.org/en/docs/http/ngx_http_core_module.html#limit_rate
Regards
Aleks
On 15.04.21 17:09, Willy Tarreau wrote:
On Thu, Apr 15, 2021 at 04:49:00PM +0200, Aleksandar Lazic wrote:
#define JSON_INT_MAX ((1ULL << 53) - 1)
^
Sorry I was not clear, please drop that 'U' here.
I'm also sorry, I was in a tunnel :-/
Attached now th
On 15.04.21 16:09, Willy Tarreau wrote:
On Thu, Apr 15, 2021 at 04:05:27PM +0200, Aleksandar Lazic wrote:
Well I don't think so because 4 is still bigger then -9007199254740991 ;-)
This is because *you* think it is -9007199254740991 but the reality
is that it's not this.due to ULL
On 15.04.21 15:55, Willy Tarreau wrote:
On Thu, Apr 15, 2021 at 03:41:18PM +0200, Aleksandar Lazic wrote:
Now when I remove the check "smp->data.u.sint < 0" every positive value is
bigger then JSON INT_MIN and returns 0.
But don't you agree that this test DOES nothing ? If it
On 15.04.21 14:48, Willy Tarreau wrote:
On Thu, Apr 15, 2021 at 02:17:45PM +0200, Aleksandar Lazic wrote:
I, by far, prefer Tim's proposal here, as I do not even understand the
first one, sorry Aleks, please don't feel offended :-)
Well you know my focus is to support HAProxy and therefore
On 15.04.21 09:08, Willy Tarreau wrote:
On Wed, Apr 14, 2021 at 09:52:31PM +0200, Aleksandar Lazic wrote:
+ - string : This is the default search type and returns a String;
+ - boolean : If the JSON value is not a String or a Number
+ - number : When the JSON value is a Number
On 14.04.21 18:41, Tim Düsterhus wrote:
Aleks,
On 4/14/21 1:19 PM, Aleksandar Lazic wrote:
From 46ddac8379324b645c662e19de39d5de4ac74a77 Mon Sep 17 00:00:00 2001
From: Aleksandar Lazic
Date: Wed, 14 Apr 2021 13:11:26 +0200
Subject: [PATCH 2/2] MINOR: sample: converter: Add json_query
Hi.
here now the current version of the patches.
Regards
Aleks.
On 14.04.21 10:45, Aleksandar Lazic wrote:
On 14.04.21 04:36, Willy Tarreau wrote:
On Wed, Apr 14, 2021 at 03:02:20AM +0200, Aleksandar Lazic wrote:
But then, could it make sense to also support "strict integers&quo
On 14.04.21 04:36, Willy Tarreau wrote:
On Wed, Apr 14, 2021 at 03:02:20AM +0200, Aleksandar Lazic wrote:
But then, could it make sense to also support "strict integers": values
that can accurately be represented as integers and which are within the
JSON valid range for integers (-2^
On 13.04.21 11:26, Willy Tarreau wrote:
Hi Aleks,
On Mon, Apr 12, 2021 at 10:09:08PM +0200, Aleksandar Lazic wrote:
Hi.
another patch which honer the feedback.
Thank you. FWIW I agree with all the points reported by Tim. I'll add
a few comments and/or suggestions below. On a general note
Hi Moemen,
any chance to get this feature before 2.4 will be realeased?
Regards
Aleks
On 06.04.21 09:13, Willy Tarreau wrote:
Hi Moemen,
On Tue, Apr 06, 2021 at 01:58:11AM +0200, Moemen MHEDHBI wrote:
Only part unclear:
On 02/04/2021 15:04, Tim Düsterhus wrote:
+int base64urldec(const char
h;
smp->data.type = SMP_T_STR;
```
I have also add more tests with some specific JSON types.
Regards
Aleks
On 11.04.21 13:04, Tim Düsterhus wrote:
Aleks,
On 4/11/21 12:28 PM, Aleksandar Lazic wrote:
Agree. I have now rethink how to do it and s
On 10.04.21 13:22, Tim Düsterhus wrote:
Aleks,
On 4/10/21 12:24 AM, Aleksandar Lazic wrote:
+json_string() : string
I don't like the name. A few suggestions:
- json_query
- json_get
- json_decode
maybe json_get_string because there could be some more getter like bool, int
ry because it was small and offers the JSON path
feature.
On 4/8/21 10:21 PM, Aleksandar Lazic wrote:
From 7ecb80b1dfe37c013cf79bc5b5b1caa3c0112a6a Mon Sep 17 00:00:00 2001
From: Alekesandar Lazic
Date: Thu, 8 Apr 2021 21:42:00 +0200
Subject: [PATCH] MINOR: sample: add json_string
I'd add 'conv
Hi.
Sorry I have now seen the copy paste error.
please use this patch
Regards
Alex
On 08.04.21 21:55, Aleksandar Lazic wrote:
Hi.
Attached the patch to add the json_string sample.
In combination with the JWT patch is a pre-validation of a bearer token part
possible.
I have something like
NTRACT, TORT OR OTHERWISE, ARISING FROM,
+// OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+// SOFTWARE.
+
+// Aleksandar Lazic
+// git clone from 2021-08-04 because of this fix
+// https://github.com/cesanta/mjson/commit/7d8daa8586d2bfd599775f049f26d2645c25a
Tim,
you are great ;-)
On 08.04.21 18:14, Tim Düsterhus wrote:
Aleks,
On 4/8/21 5:07 PM, Aleksandar Lazic wrote:
http-request set-var(sess.json) %[req.hdr(Authorization),b64dec,json_string("\$.kubernetes\\.io/serviceaccount/namespace")]
http-request set-var() does not expect the
101 - 200 of 1020 matches
Mail list logo