X header with underscore is not correctly parsed when put above Host:

[Ahmy Yulrizka]

I test this with nginx version 1.4.4 and 1.6.0

When setting up nginx as a load balancer, i notice some weird behavior

Step to reproduce

1. enable default site '000-default'. create another site to be tested. (i did not see this behavior if there is only one site)

2. create post

GET /users/current.json HTTP/1.1
Host: lb.somehost.com
X-SESSION_FOO: 9abcdef999999abcde.99999999

nginx will forward X-SESSION_FOO

3. another post with custom session above host

GET /users/current.json HTTP/1.1
X-SESSION_FOO: 9abcdef999999abcde.99999999
Host: lb.somehost.com

nginx will NOT forward X-SESSION_FOO

4. another post without underscore

GET /users/current.json HTTP/1.1
X-SESSION-FOO: 9abcdef999999abcde.99999999
Host: lb.somehost.com

nginx will forward X-SESSION-FOO

Some information

# /etc/nginx/sites-enabled/api.local
upstream api_general {

server 10.0.0.1

;
}

server {

listen *:80;
server_name lb lb.somehost.com

access_log /var/log/nginx/api.local.access.log timed_combined;
error_log /var/log/nginx/api.local.error.log;

underscores_in_headers on;
add_header Access-Control-Expose-Headers "X-SESSION_ID, Content-Type, Location";

location / {

proxy_pass ​http://api_general;

}

}

[Valentin V. Bartenev]

That is expected behavior. Until the Host header is received nginx uses configuration from the default server block.