Thanks to visit codestin.com
Credit goes to github.com

Skip to content

fix rewriting of /api and / so they're not URL-decoded before proxying upstream #589

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Jun 26, 2018
Merged

fix rewriting of /api and / so they're not URL-decoded before proxying upstream #589

merged 1 commit into from
Jun 26, 2018

Conversation

@apotterri
Copy link
Contributor

Closes conjurinc/appliance#232

What does this pull request do?

Fixes the nginx location rules for /api and / to avoid decoding before proxying to the upstream.

What background context can you provide?

This was first noticed because hosts can no longer authenticate.

Where should the reviewer start?

The Stack Overflow answer linked in the comments is probably worth a look.

How should this be manually tested?

I did an appliance build including this change. If you pull registry2.itci.conjur.net/conjur-appliance:use-nginx-rewrite_20180626 and follow the steps in the issue, you should see that a host can now authenticate.

Screenshots (if appropriate)

Link to build in Jenkins (if appropriate)

https://jenkins.conjur.net/job/cyberark--conjur/job/use-nginx-rewrite_20180626/

Questions:

Does this have automated Cucumber tests?
No, but it really should. Probably in another PR.

Can we make a blog post, video, or animated GIF out of this?
no

Is this explained in documentation?
no

Does the knowledge base need an update?
no

@ghost ghost assigned apotterri Jun 26, 2018
@ghost ghost added in progress labels Jun 26, 2018
jvanderhoof
jvanderhoof approved these changes Jun 26, 2018
View reviewed changes
Copy link
Contributor

@jvanderhoof jvanderhoof left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Ran through this change after confirming I could not authenticate with a host. Updating the Nginx config fixed the issue.

@jvanderhoof jvanderhoof merged commit 306c163 into master Jun 26, 2018
@ghost ghost removed the in progress label Jun 26, 2018
@jvanderhoof jvanderhoof deleted the use-nginx-rewrite_20180626 branch June 26, 2018 23:49
conjur-jenkins pushed a commit that referenced this pull request Nov 22, 2024
@codihuston
CNJR-7203: Merge pull request #589 from Conjur-Enterprise/revert-588-…
9db324d 
…CNJR-7203

Revert "Temporarily disable security scans"
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@jvanderhoof jvanderhoof jvanderhoof approved these changes

@dividedmind dividedmind Awaiting requested review from dividedmind

Assignees

@apotterri apotterri

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@apotterri @jvanderhoof @dividedmind