Uploaded image for project: 'Cloud Enablement'
  1. Cloud Enablement
  2. CLOUD-1814

[JWS] Enable RemoteIPValve by default

    XMLWordPrintable

Details

    • 1
    • Hide
      Cause: RemoteIpValve not included in server.xml
      Consequence: X-Forwarded-* headers not available to AccessLogValve
      Fix: Added RemoteIpValve to server.xml
      Result: X-Forwarded-* headers available to AccessLogValve
      Show
      Cause: RemoteIpValve not included in server.xml Consequence: X-Forwarded-* headers not available to AccessLogValve Fix: Added RemoteIpValve to server.xml Result: X-Forwarded-* headers available to AccessLogValve
    • CLOUD Maintenance Sprint 11

    Description

      registry.access.redhat.com/jboss-webserver-3/webserver30-tomcat7-openshift:1.2-31

      Currently this is not configured and HttpServletRequest.getRemoteHost() returns router address instead of client IP address. It would be great if it's configured by default and reflect X_Forwarded_For value to this API. Also it would be nice if we have a switch to disable RemoteIPValve installation for migrated apps that already proxy aware and read X_Forwarded_For header directly.

      In OpenShift 2 RemoteIPValve was configured by default:

              <Valve
          className="org.apache.catalina.valves.RemoteIpValve"
          protocolHeader="x-forwarded-proto"
        />

      Attachments

        Issue Links

          is incorporated by

          Enhancement - An enhancement to or refactoring of existing functionality that is not configurable by an end user (typically a change made by an internal team that affects users) CLOUD-1784 [COMMON] Make the accessLog valve configurable

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Verified
          is related to

          Feature Request - Feature requests from customers and/or users CLOUD-1820 StdoutAccessLogValve should also log X-Forwarded-For header

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Verified

          Enhancement - An enhancement to or refactoring of existing functionality that is not configurable by an end user (typically a change made by an internal team that affects users) CLOUD-2024 [EAP6] Enable RemoteIPValve by default

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Verified
          relates to

          Enhancement - An enhancement to or refactoring of existing functionality that is not configurable by an end user (typically a change made by an internal team that affects users) CLOUD-2152 [tracker] Sprint 12 release

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Closed

          Activity

            People

              wdecoste1@redhat.com William Decoste (Inactive)
              rhn-support-tkimura Takayoshi Kimura
              Libor Fuka Libor Fuka
              Votes:
              0 Vote for this issue
              Watchers:
              8 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: