how to set https header?

Question

In our production environment, the client uses ssl for the authorize_new request.  Because we are handling ssl on the load balancer, the application does not know that the protocol is https instead of http, so the OAuth signature is not generated correctly. 
&nbsp;  
&nbsp; Does anyone know how we would configure the load balancer to set a header for https requests?  Rails expects one of the following headers to be set: 
&nbsp;  
&nbsp; HTTPS: on 
&nbsp; HTTP_X_FORWARDED_PROTO: https 
&nbsp;  
&nbsp; Thanks. 
&nbsp; Jan

the_bhattman · Answer

Hi Jan,  
 Since you are terminating SSL on the load balancer you can then use the following in your irule 
  
 You can create something like the following example:

when HTTP_REQUEST{  
     if { (![HTTP::header "HTTP_X_FORWARDED_PROTO"] equals "https") and (![HTTP::header "HTTPS"] equals "on")  } {  
        HTTP::header insert "HTTP_X_FORWARDED_PROTO" "https"   
        HTTP::header insert "HTTPS" "on"  
       }  
 }

I hope this helps  
 CB

hoolio · Answer

Also, if you want to do this in the HTTP profile, you could configure the header to erase as one of the header names (HTTPS or HTTP_X_FORWARDED_PROTO) and the same header name in the header to insert field as the header name and value ('HTTPS: on' or 'HTTP_X_FORWARDED_PROTO: https'). 
&nbsp;  
&nbsp; Aaron

peter_milanese_ · Answer

Posted By hoolio  on  09/28/2009 1:55 PM 
&nbsp;  
&nbsp; Also, if you want to do this in the HTTP profile, you could configure the header to erase as one of the header names (HTTPS or HTTP_X_FORWARDED_PROTO) and the same header name in the header to insert field as the header name and value ('HTTPS: on' or 'HTTP_X_FORWARDED_PROTO: https').  
&nbsp;    
&nbsp;  Aaron&nbsp; 
&nbsp;  
&nbsp; How do you delimit the Headers in the erase/insert fields if you want to place both?

hoolio · Answer

Hi Peter,  
    
  I think you can only remove or insert one header using the HTTP profile.  You can use an iRule to handle more than one header insert or removal:  
    
  http://devcentral.f5.com/wiki/default.aspx/iRules/http__header  
  HTTP::header insert ["lws"] [ ]+

when HTTP::request {  
    
      Insert multiple headers in one command  
     HTTP::header insert header_1 value_1 header_2 value_2 
  
      Insert a third header in a separate command  
     HTTP::header insert header_3 value_3  
  
      Remove all headers with this name (only supports one header name per invocation)  
     HTTP::header remove header_1  
  }

Aaron

peter_milanese_ · Answer

Thanks much Aaron, that got me a lot closer.  
&nbsp;  
&nbsp; I'm uncertain why, but when I dump the headers, both prepend "HTTP_" to the variables (as dumped within phpinfo()) 
&nbsp;  
&nbsp; i.e.  
&nbsp;  
&nbsp; when HTTP_REQUEST {   
&nbsp;      HTTP::header insert "HTTPS" "on"   
&nbsp;      HTTP::header insert "HTTP_X_FORWARDED_PROTO" "https" 
&nbsp;   } 
&nbsp;  
&nbsp; gets- 
&nbsp;  
&nbsp; HTTP_HTTPS on 
&nbsp; HTTP_HTTP_X_FORWARDED_PROTO https  
&nbsp;  
&nbsp;  
&nbsp; Kind of strange, no?

Forum Discussion

how to set https header?

Recent Discussions

How to implement LTM forward proxy client to determine the diversion pool based on the domain name

irule to enable http/2 acceleration

VS FORWARDING & ROUTE

Statistics ›› Analytics : HTTP : Overview

SNI Sites not taking correct certificate.

Related Content

(HTTP) Redirection via Arbitrary Host Header

Log Http Headers

F5 XC Distributed Cloud HTTP Header manipulations and matching of the client ip/user HTTP headers

F5 NGINX HTTP Request Header Rules: What’s Permitted and What’s Not

HTTP Header insert

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS