Mantis Bugtracker

Viewing Issue Simple Details Jump to Notes ] View Advanced ] Issue History ] Print ]
ID Category Severity Reproducibility Date Submitted Last Update
0006054 [Resin] minor always 05-05-17 11:02 07-20-17 14:03
Reporter wileysaw View Status public  
Assigned To ferg
Priority normal Resolution fixed  
Status closed   Product Version 4.0.47
Summary 0006054: mod_caucho drops request parameters when used behind a SSL termination
Description Project that involves both Resin 4.x and WebSphere App Server 8.5.x

In front of both servers we have an IBM HTTP server configured with IBM WebSphere Plug-in and mod_caucho.

We have noticed that as long as mod_caucho is active, requests sent to WebSphere are stripped from parameters:

That means that a system out on HttpServletRequest.getParameterNames() in the WebSphere application, would return "" as long as mod_caucho is loaded in the front-end HTTP server.

mod_caucho would intefere in this scenario

INTERNET->HTTPS:443->SSL OFFLOADER->DMZ1->HTTP:80->HTTP SEVER (+mod_caucho + was_plugin)->DMZ2->HTTP:9080->WEBSPHERE SERVER (receives HTTP request with HTTP missing parameters)

mod_caucho would NOT intefere in this scenario:

INTERNET->HTTPS:443->SSL OFFLOADER->DMZ1->HTTPS:443->HTTP SEVER (+mod_caucho + was_plugin)->DMZ2->HTTP:9443->WEBSPHERE SERVER (receives HTTP request with HTTP missing parameters)
Additional Information Additionally, I have verified that removing the mod_caucho and replacing it with a standard reverse proxy allowed me to correctly route request to both WebSphere and Resin
Attached Files

- Relationships

There are no notes attached to this issue.

- Issue History
Date Modified Username Field Change
05-05-17 11:02 wileysaw New Issue
07-20-17 14:03 ferg Assigned To  => ferg
07-20-17 14:03 ferg Status new => closed
07-20-17 14:03 ferg Resolution open => fixed
07-20-17 14:03 ferg Fixed in Version  => 4.0.54

Mantis 1.0.0rc3[^]
Copyright © 2000 - 2005 Mantis Group
27 total queries executed.
25 unique queries executed.
Powered by Mantis Bugtracker