Open dBitech opened 4 days ago
In looking at func scheme() I see we do some auto detection for X-forward-for, This header is considered non-standard though its use is fairly ubiquitous. X-Forward-For has been superseded by RFC7239. It would probably be well served to implement support for that as well. Haproxy will set this header properly when options forwarded is add to the relevant haproxy backend section of the configuration. The go-forward package makes handling both X-Forward-* and forwarded headers easy.
Thank you for this report. This does sound like a bug.
My tegola instance is behind a haproxy that handles my ssl termination/offloading. To meet the requirement that there is no mixed mode (http/https) in the front end, I need to have the URL's being returned within the capabilities.json upgrade the proto from http to https.
To do this, I was told to use the
hostname =
directive in the `[webserver]' section which I've done below:This however results in malformed url's in the capabilites.json
If it makes any difference I'm running FreeBSD 14.1 as the OS, with tegola from a fresh (today)
git pull