Details

    • Steps to Reproduce:
      Hide

      1. Set up access logging to include an incoming header:

                          <access-log prefix="access." pattern="%h %l %u %t %r %s %b %{i,X-Forwarded-For}"/>
      

      2. Attempt a request with multiple header occurrences and note the logged results:

      curl -H "X-Forwarded-For: 127.0.0.2" -H "X-Forwarded-For: 127.0.0.3" localhost:8080/app

      Show
      1. Set up access logging to include an incoming header: <access-log prefix= "access." pattern= "%h %l %u %t %r %s %b %{i,X-Forwarded-For}" /> 2. Attempt a request with multiple header occurrences and note the logged results: curl -H "X-Forwarded-For: 127.0.0.2" -H "X-Forwarded-For: 127.0.0.3" localhost:8080/app

      Description

      The access log only logs the first occurrence of an incoming request header. This can hide desired or expected values from being logged.

        Gliffy Diagrams

          Attachments

            Issue Links

              Activity

                People

                • Assignee:
                  swd847 Stuart Douglas
                  Reporter:
                  aogburn Aaron Ogburn
                • Votes:
                  0 Vote for this issue
                  Watchers:
                  5 Start watching this issue

                  Dates

                  • Created:
                    Updated:
                    Resolved: