Custom Query (2311 matches)

Filters
 
Or
 
  
 
Columns

Show under each result:

Results (73 - 75 of 2311)

15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35
Ticket Resolution Summary Owner Reporter
#2327 duplicate Adding cross-domain configuration in HTTP2 is invalid yl-yue
Description

Invalid configuration as follows: 

    server {
        listen       8080 http2;
        server_name  localhost;
    
        location / {
            add_header 'Access-Control-Allow-Origin' $http_origin always;
            add_header 'Access-Control-Allow-Methods' 'GET, POST, OPTIONS, PUT, DELETE';
            add_header 'Access-Control-Allow-Credentials' 'true';
            add_header 'Access-Control-Allow-Headers' 'keep-alive,user-agent,cache-control,content-type,x-user-agent,x-grpc-web,grpc-timeout,device-tag';
    
            if ($request_method = 'OPTIONS') {
                return 204;
            }
            
            grpc_pass grpc://192.168.0.12:31201;
        }
    }

After debugging, the add_header command in http1.1 takes effect. After http2 is added, the add_header command becomes invalid

#2302 invalid Adding `proxy_hide_header` to `location` context completely deactivates `proxy_hide_header` directives in `server` context usenkovdmitry@…
Description

This behavior was discovered first on 1.18.0 (Ubuntu 20.04) but can be reproduced with the latest docker container. 

events {
    worker_connections  1024;
}
http {
    server {
        listen 80;
        proxy_http_version 1.1;
        proxy_ssl_server_name on;

        #doesn't work unless `proxy_hide_header` in location / is removed
        proxy_hide_header Link;

        location / {
            proxy_pass https://www.nginx.com;

            #works, but `proxy_hide_header` in `server` context stops working
            proxy_hide_header X-Pingback;
        }
    }
}

sudo docker run -p 3000:80 -it -v /home/dmitry/nginx.conf:/etc/nginx/nginx.conf:ro nginx

curl localhost:3000/ -I

You'll see that Link header is passed to curl (even though proxy_hide_header Link; is there). Try to remove proxy_hide_header X-Pingback; from location, restart nginx and curl again. Link header will be hidden as it should.

#854 wontfix Add inherited keyword for altering directive inheritance Haravikk@…
Description

I wanted to set a few basic headers for all of my HTTP responses in nginx, however the current behaviour of add_header is that it is inherited from http only if a server block has no headers of its own.

I'd like to propose the addition of an inherited (or similar) keyword for the add_header directive that will allow it to be explicitly inherited by nested blocks in spite of its normal behaviour.

However, it is likely that this override may be useful for other directives that aren't inherited by default as well. The only one that springs to mind is try_files which I include in most location blocks except those that are to forbid access (where I put a deny instead).

In my particular use case I was hoping to add the X-Frame-Options: DENY header to all http responses, thus preventing all content on my sites from being placed in iframes by default (in supported browsers). This is a useful way to avoid legitimate pages being used for phishing/click-jacking in modern browsers (i.e- attacks where the user is interacting with the actual, full-featured site, but what they do is captured by the page it is embedded within). Unfortunately most of my server blocks have a custom header of some kind, particularly SSL server blocks (which have an HSTS header) so add_header under http has no effect.

It's fairly trivial in this case I admit, but I think that allowing users to override inheritence behaviour when they know they want to is useful.

15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35
Batch Modify
Note: See TracBatchModify for help on using batch modify.
Note: See TracQuery for help on using queries.