Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Host header needs to be overridden to avoid redirection #20416

Closed
sanjulamadurapperuma opened this issue May 20, 2024 · 0 comments
Closed

Host header needs to be overridden to avoid redirection #20416

sanjulamadurapperuma opened this issue May 20, 2024 · 0 comments
Labels
Affected/5.11.0 Type/Bug

Comments

@sanjulamadurapperuma
Copy link
Contributor

Describe the issue:

The host header present in a given request can be changed via the client who is initiating the request, which will allow the request to be redirected to the now changed location header which takes its value from the host header (i.e. https://localhost/ can be redirected to https://localhost1/carbon after the host header is set to localhost1). The host header needs to be overridden from a configuration level in order to prevent this.

Environment information (Please complete the following information; remove any unnecessary fields) :

  • Product Version: v5.11.0
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
Affected/5.11.0 Type/Bug
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@sanjulamadurapperuma @Thisara-Welmilla