>Number: 4854 >Category: mod_proxy >Synopsis: ProxyPassReverse does not change all headers (such as >Content-Location) pointing back to original http-server >Confidential: no >Severity: non-critical >Priority: medium >Responsible: apache >State: open >Class: change-request >Submitter-Id: apache >Arrival-Date: Thu Aug 12 13:50:01 PDT 1999 >Last-Modified: >Originator: [EMAIL PROTECTED] >Organization: apache >Release: 1.3.6 >Environment: RedHat Linux 6.0 >Description: ProxyPassReverse directive tries to prevent the browser from getting pointed to the original site when original server sends a redirect header. Some servers (Like Microsoft IIS) send a Content-Location header in similar kind of situations as redirects are used. When requesting something like http://server.domain/directory/, IIS send a document (index.html or whatever) with a Content-Location header defined as http://server.domain/directory/index.html Some browsers (not all) use this information when following links from page just received. This will point the browser to the original site rather than using ProxyPass server. >How-To-Repeat: Set up an IIS server and define apache to ProxyPass the root of IIS server to /iis-server/. Create index.html to root of IIS server. Then point lynx to the http://apacheserver/iis-server/ . Follow some link on the index page and see your browser requesting data directly from IIS-server rather than apache-server. >Fix: Modify ProxyPassReverse directive to modify also Content-Location header. Or add another directive (ProxyPassContentlocation) for this purpose. >Audit-Trail: >Unformatted: [In order for any reply to be added to the PR database, you need] [to include <[EMAIL PROTECTED]> in the Cc line and make sure the] [subject line starts with the report component and number, with ] [or without any 'Re:' prefixes (such as "general/1098:" or ] ["Re: general/1098:"). If the subject doesn't match this ] [pattern, your message will be misfiled and ignored. The ] ["apbugs" address is not added to the Cc line of messages from ] [the database automatically because of the potential for mail ] [loops. If you do not include this Cc, your reply may be ig- ] [nored unless you are responding to an explicit request from a ] [developer. Reply only with text; DO NOT SEND ATTACHMENTS! ]
