Uploaded image for project: 'OpenIDM'
  1. OpenIDM
  2. OPENIDM-10689

Location redirect always using localhost

    Details

    • Sprint:
      OpenIDM Sprint 90

      Description

      1) Add a host alias for "localhost"; for example, I created an alias called "jake"
      2) Start IDM with any configuration
      3) Request the /admin page using the alias:

      curl http://jake:8081/admin -v
      *   Trying 127.0.0.1...
      * Connected to jake (127.0.0.1) port 8081 (#0)
      > GET /admin HTTP/1.1
      > Host: jake:8081
      > User-Agent: curl/7.47.0
      > Accept: */*
      > 
      < HTTP/1.1 302 Found
      < Date: Mon, 16 Apr 2018 17:15:48 GMT
      < Location: http://localhost:8081/admin/
      < Content-Length: 0
      < 
      * Connection #0 to host jake left intact
      

      Notice the mismatch between the "Host" request header and the "Location" response header. The user should not be getting redirected to "localhost". The proper value for the Location header should be either "/admin/" or "http://jake:8081/admin/".

      Compare with the same request against 5.5:

      curl http://jake:8081/admin -v
      *   Trying 127.0.0.1...
      * Connected to jake (127.0.0.1) port 8081 (#0)
      > GET /admin HTTP/1.1
      > Host: jake:8081
      > User-Agent: curl/7.47.0
      > Accept: */*
      > 
      < HTTP/1.1 302 Found
      < Date: Mon, 16 Apr 2018 17:23:09 GMT
      < Location: http://jake:8081/admin/
      < Content-Length: 0
      < 
      * Connection #0 to host jake left intact
      

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                alin Alin Brici
                Reporter:
                jake.feasel Jake Feasel
              • Votes:
                0 Vote for this issue
                Watchers:
                6 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: