Uploaded image for project: 'Red Hat 3scale API Management'
  1. Red Hat 3scale API Management
  2. THREESCALE-7076

IP Check Policy - Invalid X-Forwarded-For header with only ',' is not rejected

XMLWordPrintable

    • False
    • False
    • Not Started
    • Not Started
    • Not Started
    • Not Started
    • Not Started
    • Not Started
    • No
    • +
    • Undefined

      If IP Check Policy is configured in the UI as shown below:

      Error_msg: IP address not allowed 
Client_IP_SOURCES : Get the IP from the X-Forwarded header( first IP of the list ) 
IP* List of IPS : <whitelist-ip> 
check_type( The type of check to apply ) : Allow only the IPS included in the list

      then an API call with X-forwarded-for header with only ',' will result in the following Internal Error instead of being rejected.

      <html>
      <head><title>500 Internal Server Error</title></head>
      <body>
      <center><h1>500 Internal Server Error</h1></center>
      <hr><center>openresty</center>
      </body>
      </html>

              Unassigned Unassigned
              rhn-support-cvajjhal Chandrasekhar Vajjhala (Inactive)
              David Rajnoha David Rajnoha (Inactive)
              Eloy Coto Eloy Coto (Inactive)
              Eloy Coto Eloy Coto (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

                Created:
                Updated:
                Resolved: