Skip to main content
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [List Home]
Re: [jetty-users] HTTPS Load Balancer & Redirect
Hi Chad,

Thanks for that :) 

EC2 Load Balancers inject the header apparently, but I am still seeing http:// rather than https://, even with forwarded=true on the Handler.

Does anyone know know when support for X-Forwarded-Proto was added into the code base? The project I am working on uses 7.1.5 currently. Looking at this bug, it seems that it should have been in by 7.1.5?

Cheers

Matt


On Sat, Oct 8, 2011 at 12:01 PM, Chad La Joie <lajoie@xxxxxxxxx> wrote:
Matt,

You may want to review this documentation:
http://wiki.eclipse.org/Jetty/Tutorial/Apache#Configuring_mod_proxy_http

It's for Apache but it discusses how to let Jetty know that the
connection has passed through something else, and been transformed.
It also shows which HTTP headers should be set by the load balancer in
order to inform Jetty about the initial request.

On Fri, Oct 7, 2011 at 23:51, Matthew Painter
<matthew.painter@xxxxxxxxxx> wrote:
> Hi All,
> Firstly, apologies for the cross-posting; I posted in dev first, but this is
> probably more suitable :)
> I am running a Jetty RT application behind an EC2 HTTPS load balancer:
> Client --HTTPS--> balancer --HTTP--> Jetty
>
> Say I have a context foo, and someone makes the request:
> https://mydomain.com/foo
> You would expect a redirect to https://mydomain.com/foo/, but instead you
> have a redirect to http://mydomain.com/foo/ - which breaks the app.
> I have had a google around about this, but can't find anything Jetty
> specific... can anyone shed any light on any work-arounds or fixes for this?
> I presume that as the request is being made over http, jetty is assuming
> that that is the protocol for the redirect, instead of using the actual
> protocol?
> Thanks :)
>
> Matt
> _____________________________________________________________________
> The information contained in this message is confidential and is intended
> for the addressee only. If you have received this message in error, please
> notify Kusiri Limited as soon as possible. The unauthorised use, disclosure,
> copying or alteration of this message is prohibited and may be unlawful. The
> internet cannot guarantee the integrity of this message and therefore Kusiri
> Limited will not be liable for the message if modified.
>
> Matthew Painter - Kusiri
> Chief Technology Officer
>
> 5 New Street
> London
> EC2M 4TP
> United Kingdom
>
> Telephone: +44 (0) 781 321 4728
> Email: matthew.painter@xxxxxxxxxx
>
> _____________________________________________________________________
> The information contained in this message is confidential and is intended
> for the addressee only. If you have received this message in error, please
> notify Kusiri Limited as soon as possible. The unauthorised use, disclosure,
> copying or alteration of this message is prohibited and may be unlawful. The
> internet cannot guarantee the integrity of this message and therefore Kusiri
> Limited will not be liable for the message if modified.
>
> _______________________________________________
> jetty-users mailing list
> jetty-users@xxxxxxxxxxx
> https://dev.eclipse.org/mailman/listinfo/jetty-users
>
>



--
Chad La Joie
www.itumi.biz
trusted identities, delivered
_______________________________________________
jetty-users mailing list
jetty-users@xxxxxxxxxxx
https://dev.eclipse.org/mailman/listinfo/jetty-users

Back to the top