Open sladkoff opened 6 years ago
@sladkoff Found the following on the config manual
processing. The rules are evaluated in their declaration order when they are
met in a frontend, listen or backend section. Any rule may optionally be
followed by an ACL-based condition, in which case it will only be evaluated
if the condition is true. Since these rules apply on responses, the backend
rules are applied first, followed by the frontend's rules.```
To my understanding, HAProxy will evaluate `X-Frame-Options ALLOWALL` first, then `X-Frame-Options DENY`. This means `DENY` overrides `ALLOWALL`
I'm adding some headers with the
EXTRA_FRONTEND_SETTINGS_443
variable which should apply the header on all back-ends.Here's an excerpt of the startup config log (note the highlighted lines):
As you can see I'm trying to override the
set-header
statement in the back-end by specifying it inEXTRA_SETTINGS
.I always receive the header as defined in the front-end section though.
Is this the expected behaviour? If I'm not mistaken the back-end rule should override the front-end rule, no?
Thank you for your time.