Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Allow bypassing of x-forwarded header removal #2728

Open
wants to merge 3 commits into
base: main
Choose a base branch
from
Open

Allow bypassing of x-forwarded header removal #2728

wants to merge 3 commits into from

Conversation

rkargMsft
Copy link
Contributor

@rkargMsft rkargMsft commented Jan 27, 2025
edited
Loading

Addresses #2727

@rkargMsft
Copy link
Contributor Author

Looks like AddXForwarded similarly removes the Forwarded headers and needs similar treatment.

@adityamandaleeka
Copy link
Member

Haha, I did some digging and found this: #1070 (comment)

@MihaZupan
Copy link
Member

I agree that having the extra argument be removeAllXForwardedHeaders instead of suppressRemoveAllXForwardedHeaders is better.

The annoying part is that the current logic doesn't always remove the other header. AddForwarded does it conditionally.

yarp/src/ReverseProxy/Transforms/ForwardedTransformExtensions.cs

Lines 188 to 201 in 41e563c

if (action == ForwardedTransformActions.Off)
{
return context;
}
if (byFormat != NodeFormat.None || forFormat != NodeFormat.None || useHost || useProto)
{
var random = context.Services.GetRequiredService<IRandomFactory>();
context.RequestTransforms.Add(new RequestHeaderForwardedTransform(random,
forFormat, byFormat, useHost, useProto, action));
// Remove the X-Forwarded headers when an Forwarded transform is enabled
TransformHelpers.RemoveAllXForwardedHeaders(context, ForwardedTransformFactory.DefaultXForwardedPrefix);
}

I'm not actually sure why someone would want to add a no-op Forwarded transform like that.
I'd be okay with making a small breaking change here and have the new default be that the other header gets removed unconditionally (well, conditioned on the new argument only).

@rkargMsft
Copy link
Contributor Author

I can swap the parameter naming.

I'm not sure what the best way to handle action == ForwardedTransformActions.Off is because, as you say, it doesn't make sense to call AddForwarded with that action. If it were a new method then I'd propose validation that would throw if it was Off because, just don't call AddForwarded. I think that since it exists with the current behavior (do nothing if .Off) that it be kept as is. I think it would be odd to have the desired behavior be that .AddForwarded(..., action: ForwardedTransformActions.Off) be to do nothing with Forwarded headers but add transforms to remove the XForwarded headers.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@MihaZupan MihaZupan Awaiting requested review from MihaZupan MihaZupan is a code owner

@benjaminpetit benjaminpetit Awaiting requested review from benjaminpetit benjaminpetit is a code owner

At least 1 approving review is required to merge this pull request.

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@rkargMsft @adityamandaleeka @MihaZupan @rkarg-blizz