Comments (3)
minrk
commented on June 11, 2024
I don't think this is related to #1289 because unlike the Hub, CHP never specifies from internal configuration what ip anyone should connect to.
CHP doesn't use the bind address (which is ~always 0.0.0.0) for this, it uses the Host header so that it should be the same as the connect ip for a properly assembled request. My guess is the upstream proxy is not passing through the Host header. We could try to figure out what the proxied Host was (e.g. X-Forwarded-Host), or we could require that the upstream proxy preserve host headers for this feature.
Can you inspect the headers to see what kubernetes is passing?
If there is an additional upstream proxy, it probably makes more sense for it to do the HTTP->HTTPS redirect, anyway.
from configurable-http-proxy.
clancychilds
commented on June 11, 2024
I think, IIUC, the problem is less about the host, and more about the port?
Inside the k8s cluster, the HTTPS service is listening on 8443 and the HTTP service on 8000. These are portforwarded on the loadbalancer from 443 and 80 respectively.
When --port 8443 and --redirect-port 8000 are set, then a user trying to connect to :80 is portforwarded to :8000 which is 301'd to :8443, which doesn't work.
It may need an option like --redirect-to 443 which would be used on https://github.com/jupyterhub/configurable-http-proxy/blob/master/bin/configurable-http-proxy#L349 to that port (rather than the listen.port)
from configurable-http-proxy.
minrk
commented on June 11, 2024
closed by #187
from configurable-http-proxy.
Related Issues (20)
- `--custom-header` option doesn't work with only one header HOT 7
- Update to commander 9 HOT 3
- Update to ws >= 8 HOT 2
- Update to jasmine >= 4 HOT 1
- Memory leak in proxy? HOT 15
- Add custom-header failed HOT 2
- Release 5.0.0, dropping support for old node version - and more? HOT 14
- Update to use alpine 3.16 as a base image. HOT 4
- Socket leak HOT 41
- jupyterhub/configurable-http-proxy:4.5.3 image vulnerability issue HOT 2
- CHP Docker - permission denied on ssl cert key with properly configured permissions HOT 2
- Container rebuild to resolve open security issues HOT 1
- Routing baseurl problem HOT 5
- Scale the configurable-http-proxy to handle 1000 connections HOT 2
- Request for 4.5.5 release
- EKS container pods unable to communicate with proxy HOT 2
- Document what node version is used for various tags
- Basepath not retained in proxied requests HOT 1
- pre-commit tests fails
- Error when redirecting jupyterhub's stdout to a file on a full partition HOT 3
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from configurable-http-proxy.