ucinc / naxsi

Automatically exported from code.google.com/p/naxsi
Other
0 stars 0 forks source link

naxsi-ui is not reverse proxyable with a different location path and https #70

Closed GoogleCodeExporter closed 8 years ago

GoogleCodeExporter commented 8 years ago
What steps will reproduce the problem?

1. Configure naxsi to be accessible via another path and with SSL enabled via 
proxy_pass, e.g:

server {
        listen   443;
        server_name $hostname;
        root   <whatever-dir>;
        ssl                         on;
        [...]
        location /naxsi/ {
                proxy_pass http://127.0.0.1:8081/;
        }
        [...]
}

What is the expected output? What do you see instead?

Expected:
I can use the naxsi webinterface the same way is accessing it directly - in 
particular, the path of the links should be relative.

Instead:
Links for Graphs, Get Rules, World Map and Home point to the absolute path, e.g 
"https://foo.example.tld/graphs" instead of the correct 
"https://foo.example.tld/whatever-path/graphs". This can be resolved by 
changing the hrefs to relative paths in the *.tpl files.
Furthermore external loaded javascript is blocked by most browsers in this 
scenario, because it is retrieved via http instead https. 
To resolve this, the URLs of external js scripts should be changed to https by 
default.

What version of the product are you using? On what operating system?
1.2.7-0ubuntu0ppa1~precise / Ubuntu 12.04 LTS

Please provide your nginx configuration any additional information below.

Please see my attached patches which should resolve the issues.

Original issue reported on code.google.com by clemens....@big-consulting.net on 4 Apr 2013 at 11:24

Attachments:

GoogleCodeExporter commented 8 years ago
Please switch to nx_util.(https://code.google.com/p/naxsi/wiki/NxUtil_man)
naxsi-ui is discontinued, as live learning is too expensive.
nx_util provides the same features (whitelists, reporting generation) without 
involving a web server.

Original comment by ori...@gmail.com on 6 Apr 2013 at 1:35