not-kennethreitz/convore.json
1
0
Fork 0
mirror of https://github.com/not-kennethreitz/convore.json.git synced 2026-06-05 23:20:19 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
master
convore.json/groups/epio/document-the-ssl-proxy-header/messages.json
T
Kenneth Reitz add958b068 shuffle things around a bit
2012-02-21 01:15:00 -05:00

1 line
2.2 KiB
JSON
Raw Permalink Blame History

[{"user_id": 214, "stars": [], "topic_id": 44510, "date_created": 1314392816.9261601, "message": "(er, I meant HTTP_X_FORWARDED_PROTOCOL, of course)", "group_id": 2873, "id": 1970634}, {"user_id": 214, "stars": [], "topic_id": 44510, "date_created": 1314392721.659502, "message": "I have an app that redirects non-SSL to SSL. I just re-deployed that app for the first time in a month or so, and after the re-deploy was getting infinite redirects. I quickly realized that this was because the redeploy must have put me on a new platform with a different SSL proxy header, but I had no luck in the ep.io docs figuring out what that header might be.", "group_id": 2873, "id": 1970626}, {"user_id": 214, "stars": [], "topic_id": 44510, "date_created": 1314392772.4366691, "message": "Eventually I added a simple view to my app that printed out the full contents of request.META, deployed that, and was able to discover that it's HTTP_X_FORWARDED_FOR: SSL.", "group_id": 2873, "id": 1970631}, {"user_id": 214, "stars": [], "topic_id": 44510, "date_created": 1314392782.8509779, "message": "Anyway, that seems like a detail that would be worth documenting somewhere.", "group_id": 2873, "id": 1970633}, {"user_id": 214, "stars": [], "topic_id": 44510, "date_created": 1314392930.462548, "message": "Even better, if there's any way the ep.io request handler could detect that header itself and set wsgi.url_scheme to \"https\", that would make request.is_secure work transparently, which would be nice.", "group_id": 2873, "id": 1970643}, {"user_id": 214, "stars": [], "topic_id": 44510, "date_created": 1314393098.5787151, "message": "And I presume ep.io's proxies wouldn't let a spoofed X-Forwarded-Protocol header through. Guess I better check that myself to be sure.", "group_id": 2873, "id": 1970653}, {"user_id": 214, "stars": [], "topic_id": 44510, "date_created": 1314394836.6601231, "message": "(Confirmed that the proxies don't allow spoofing X-Forwarded-Protocol).", "group_id": 2873, "id": 1970791}, {"user_id": 5282, "stars": [], "topic_id": 44510, "date_created": 1314404733.1811299, "message": "Some other people have been having trouble with SSL detection - thanks for this. I'll make sure we set a header that request.is_secure detects", "group_id": 2873, "id": 1971813}]
Reference in New Issue View Git Blame Copy Permalink