Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

PeerCert shouldn't be URLEncoded when provided through a header #9220

Open
exalate-issue-sync bot opened this issue Sep 7, 2023 · 1 comment
Open

PeerCert shouldn't be URLEncoded when provided through a header #9220

exalate-issue-sync bot opened this issue Sep 7, 2023 · 1 comment
Labels
project: AM type: bug

Comments

@exalate-issue-sync
Copy link

exalate-issue-sync bot commented Sep 7, 2023
edited

When the AM GW is behind a reverse proxy, the client certificate can be provided through a HTTP Header to the GW.

Currently AM considere this cert as URLEncoded as it is the behaviour of NGnix but it is not a standard behaviour.

We have to follow standard format and provide a way to manage the NGinx one.
@exalate-issue-sync exalate-issue-sync bot changed the title + PeerCert should be URLEncoded when provided through a header Sep 7, 2023
@exalate-issue-sync exalate-issue-sync bot changed the title PeerCert should be URLEncoded when provided through a header PeerCert shouldn't be URLEncoded when provided through a header Sep 13, 2023
@Orejiro
Copy link

Orejiro commented Oct 9, 2023
edited

Hello,

I just had something to keep in mind. After the resolution of this issue APIM JWT Policy should be adapted accordingly (https://github.com/gravitee-io/gravitee-policy-jwt#specific-configuration-for-confirmation-method-validation).

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
project: AM type: bug
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@Orejiro