Juniper Openstack

SYMC: Set HTTP X-Forward-For option as default in HAProxy config

  1. Series r2.1
  2. Bug #1485782
Bug #1485782 reported by Varun Lodaya
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
Juniper Openstack
New
Medium
Unassigned
R2.0
Fix Committed
Medium
Varun Lodaya
R2.1
Fix Committed
Medium
Varun Lodaya
R2.20
Fix Committed
Medium
Varun Lodaya
OpenContrail
New
Medium
Varun Lodaya

Bug Description

Currently in 2.0/2.1/2.2, HTTP X-Forward-For is not set as default for HTTP/HTTPS traffic, so user's don't see client's IP in the request.
Master branch only has it enabled for HTTPS. Need to fix it and have it consistent in all the 4 branches.

Tags: lbaas
Varun Lodaya (varun-lodaya)
Changed in opencontrail:
assignee: nobody → Varun Lodaya (varun-lodaya)
importance: Undecided → Medium
Revision history for this message
OpenContrail Admin (ci-admin-f) wrote : [Review update] R2.20

Review in progress for https://review.opencontrail.org/13118
Submitter: Varun Lodaya (<email address hidden>)

Revision history for this message
OpenContrail Admin (ci-admin-f) wrote : [Review update] R2.1

Review in progress for https://review.opencontrail.org/13119
Submitter: Varun Lodaya (<email address hidden>)

Revision history for this message
OpenContrail Admin (ci-admin-f) wrote : [Review update] R2.0

Review in progress for https://review.opencontrail.org/13120
Submitter: Varun Lodaya (<email address hidden>)

Revision history for this message
OpenContrail Admin (ci-admin-f) wrote : A change has been merged

Reviewed: https://review.opencontrail.org/13118
Committed: http://github.org/Juniper/contrail-controller/commit/4e8862bee3b0e8b7cd07da36cb8b7982338f45e2
Submitter: Zuul
Branch: R2.20

commit 4e8862bee3b0e8b7cd07da36cb8b7982338f45e2
Author: Varun Lodaya <email address hidden>
Date: Mon Aug 17 15:23:30 2015 -0700

Set HTTP X-Forward-For option as default in HAProxy config

This change adds the option forwardfor field under
frontend section in haproxy config file for HTTP and
HTTPS protocols. This will make sure that client's IP
is always forwarded to server in request header

Closes-Bug: #1485782
Change-Id: I73cb3599af85b36cb7a424624fc78ebd5c32dab1

Revision history for this message
OpenContrail Admin (ci-admin-f) wrote :

Reviewed: https://review.opencontrail.org/13119
Committed: http://github.org/Juniper/contrail-controller/commit/0e7681f6e436b403b008acddced0231d8ffbccc6
Submitter: Zuul
Branch: R2.1

commit 0e7681f6e436b403b008acddced0231d8ffbccc6
Author: Varun Lodaya <email address hidden>
Date: Mon Aug 17 15:28:17 2015 -0700

Set HTTP X-Forward-For option as default in HAProxy config.

This change adds the option forwardfor field under
frontend section in haproxy config file for HTTP and
HTTPS protocols. This will make sure that client's IP
is always forwarded to server in request header.

Change-Id: Ic7d251b6c4bcfaf1895236161e8138fd7ab75b7c
Closes-Bug: #1485782

Revision history for this message
OpenContrail Admin (ci-admin-f) wrote :

Reviewed: https://review.opencontrail.org/13120
Committed: http://github.org/Juniper/contrail-controller/commit/c4313840c36783ff818aaf88d41b7054034cd282
Submitter: Zuul
Branch: R2.0

commit c4313840c36783ff818aaf88d41b7054034cd282
Author: Varun Lodaya <email address hidden>
Date: Mon Aug 17 15:30:21 2015 -0700

Set HTTP X-Forward-For option as default in HAProxy config.

This change adds the option forwardfor field under
frontend section in haproxy config file for HTTP and
HTTPS protocols. This will make sure that client's IP
is always forwarded to server in request header.

Change-Id: I8bc9bc1e70285e5a4f1b3eba2ceff51d7229d45d
Closes-Bug: #1485782

Revision history for this message
OpenContrail Admin (ci-admin-f) wrote : [Review update] R2.22-dev

Review in progress for https://review.opencontrail.org/13927
Submitter: Vinay Vithal Mahuli (<email address hidden>)

Nagabhushana R (bhushana)
Changed in juniperopenstack:
importance: Undecided → Medium
tags: added: lbaas
Varun Lodaya (varun-lodaya)
summary: - Set HTTP X-Forward-For option as default in HAProxy config
+ SYMC: Set HTTP X-Forward-For option as default in HAProxy config
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.