-
Notifications
You must be signed in to change notification settings - Fork 116
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
docs should not use underscores in http headers for auth #5478
Comments
This is rather interesting because REMOTE_USER comes from django: https://docs.djangoproject.com/en/5.0/howto/auth-remote-user/ I imagine there are a lot of django users using gunicorn. Maybe it's worth filing a django issue and see how they proceed? |
It is and it isn't ;-) (You'll notice, I had a ton of fun with that).
In the linked docs, there is a warning, where they say:
No Gunicorn is working on making this a bit more user-friendly in benoitc/gunicorn#3192, by making it configurable which "illegal" headers get accepted from a "trusted" proxy. |
Version
any
Describe the bug
https://docs.pulpproject.org/pulpcore/authentication/webserver.html#webserver-auth-with-reverse-proxy says:
But since gunicorn 22.0 (more precisely https://github.com/benoitc/gunicorn/commit/72b8970dbf2bf3444eb2e8b12aeff1a3d5922a9a/ benoitc/gunicorn#2799) headers with underscores are forbidden by default.
If the docs would use a dash, so
proxy_set_header REMOTE-USER …
things would work :)Additional context
Grant made me file this, and I did not want to post a screenshot of our colorful conversation ;)
The text was updated successfully, but these errors were encountered: