Comments (11)
Original comment by [email protected]
on 16 Apr 2012 at 10:00
- Added labels: SSL
from mod-spdy.
I installed mod_spdy yesterday and am getting redirect loops. Direct requests
to HTTPS URLs work, but HTTP requests which 302 redirect to HTTPS go into a
redirect loop. Strangely enough, when I plug Fiddler in the redirect works (no
loop). The 302 is done by the web application using:
response.sendRedirect(uri.toString());
Chrome 18.0.1025.162 (Official Build 131933) m
Original comment by [email protected]
on 18 Apr 2012 at 1:45
from mod-spdy.
Yes, I suspect this is the same sort of issue as above: if you redirect from
HTTP to HTTPS, and the HTTPS url is served via mod_spdy, the handler may be
misled into thinking the url served over SPDY is not being served over SSL, so
it tries to redirect again. Not sure why the problem disappears when you use
Fiddler, though.
Can you tell me a little more about the web app that's doing the redirection?
What language/framework is it written in, and what mechanism is it using to
determine if the request is HTTP or HTTPS?
Original comment by [email protected]
on 18 Apr 2012 at 3:10
from mod-spdy.
The app uses Struts2 (Java) with the SSL-plugin. The intercept method in the
source file below handles the HTTPS redirection:
http://struts2-ssl-plugin.googlecode.com/svn/trunk/plugin/src/main/java/com/googlecode/sslplugin/interceptors/SSLInterceptor.java
Original comment by [email protected]
on 18 Apr 2012 at 5:55
from mod-spdy.
I have a similar issue when mod_spdy is combined with mod_proxy_ajp to forwared
requests from Apache httpd to Tomcat. With SPDY enabled the scheme reported via
AJP and the port are wrong (http instead of https and 80 instead of 443).
Original comment by [email protected]
on 19 Apr 2012 at 11:40
from mod-spdy.
I also have an Apache/Tomcat setup with mod_proxy_ajp as described in comment
#5.
Original comment by [email protected]
on 19 Apr 2012 at 2:42
from mod-spdy.
As a workaround you can override the values by setting the scheme and proxyPort
attributes on the connector:
<Connector port="8009" protocol="org.apache.coyote.ajp.AjpNioProtocol"
URIEncoding="UTF-8" scheme="https" proxyPort="443"/>
Original comment by [email protected]
on 19 Apr 2012 at 9:21
from mod-spdy.
[deleted comment]
from mod-spdy.
I can confirm I had this same issue and that the workaround using the port
number rather than the HTTPS flag does temporarily resolve the issue. I do do
a combination test, though, to have it at least catch another case, which is
this:
RewriteEngine On
RewriteCond %{HTTPS} off
RewriteCond %{SERVER_PORT} ^80$
RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI}
I check for both HTTPS being off as well as the port being 80, just to be safe,
though either one alone should be fine, I suppose.
Original comment by [email protected]
on 22 May 2012 at 5:41
from mod-spdy.
Same issue here on Debian stable, fixed with (ugly) workaround. Apart from
that, works quite nicely! This is a last step to get it working out of the box
on (my) standard setup.
Original comment by [email protected]
on 19 Jul 2012 at 4:36
from mod-spdy.
This is still an issue as of:
mod-spdy-beta-0.9.4.1-397.x86_64
When using rewrite rule:
RewriteEngine On
RewriteCond ${SERVER_PROD} ^80$
RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI}
We are unable to roll out mod_spdy to all of our servers until this is fixed,
because it will cause a significant amount of pain for customers.
Original comment by [email protected]
on 25 Jan 2014 at 5:04
from mod-spdy.
Related Issues (20)
- Chrome has deprecated SPDY/3.0? HOT 1
- Debian package mod-spdy-beta depends on apache2.2-common which is deprecated
- Support for Windows
- Solaris build problem in linux/python_arch.sh
- High Memory/CPU usage
- CVE-2014-0160 fix needed HOT 14
- Heartbleed fix for static copy of openssl HOT 1
- Support VirtualHost directive SpdyEnabled off
- spdy not working
- Failed dependencies - mod_ssl
- mod_spdy fails with a segmentation fault HOT 3
- Always get "This webpage has a redirect loop" after install mod-spdy HOT 3
- event mpm on apache 2.2 with mod_spdy segfaults
- Access to archive versions HOT 2
- SSL Certificate Error with mod_spdy active HOT 3
- Provide mod_spdy packages with openssl 1.0.1i
- TLS_FALLBACK_SCSV Support HOT 3
- ls:q
- 503 Errors when using mod_spdy with AJP proxy
- SPDY breaks DNSSec/TLSA because of wrong TLS certificate reusing
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from mod-spdy.