Apache – How to Edit HTTP Headers

apache-2.4http-headerslinuxmod-proxyreverse-proxy

I have setup with apache (apache 2.4, redhat 7.6) reverse proxy in front of the JVM.
Apache has basic authentication setup on it.

The problem is that Apache header with info about basic authentication is being sent to the JVM itself. I would need a way to edit the apache header before its sent to the JVM so instead of

Auhorization: Basic some_text_goes_here, Bearer  some_text_goes_here

I get only this sent to the JVM

Auhorization: Bearer  some_text_goes_here

Is there a way to strip the Basic authentication information from the header before its sent to the JVM ?

Best Answer

You can use the RequestHeader directive to replace the header before it is sent to the backend server.

RequestHeader set Auhorization "Bearer some_text_goes_here"

If you want to actually remove part of the header string, you can use edit along with a regular expression.

RequestHeader edit Auhorization "Basic[^,]+, " ""

The regex is looks for the string "Basic", followed by one ore more characters that are not a comma, followed by a comma and a space and replaces it with an empty string. This is however just a guess, since we don't know what exactly is in your request header you will have to figure the correct regular expression for this yourself.

Related Solutions

Nginx – How to Set Up as a Caching Reverse Proxy

I don't think that there is a way to explicitly invalidate cached items, but here is an example of how to do the rest. Update: As mentioned by Piotr in another answer, there is a cache purge module that you can use. You can also force a refresh of a cached item using nginx's proxy_cache_bypass - see Cherian's answer for more information.

In this configuration, items that aren't cached will be retrieved from example.net and stored. The cached versions will be served up to future clients until they are no longer valid (60 minutes).

Your Cache-Control and Expires HTTP headers will be honored, so if you want to explicitly set an expiration date, you can do that by setting the correct headers in whatever you are proxying to.

There are lots of parameters that you can tune - see the nginx Proxy module documentation for more information about all of this including details on the meaning of the different settings/parameters: http://nginx.org/r/proxy_cache_path

http {
  proxy_cache_path  /var/www/cache levels=1:2 keys_zone=my-cache:8m max_size=1000m inactive=600m;
  proxy_temp_path /var/www/cache/tmp; 


  server {
    location / {
      proxy_pass http://example.net;
      proxy_cache my-cache;
      proxy_cache_valid  200 302  60m;
      proxy_cache_valid  404      1m;
    }
  }
}

Apache 2.4 Proxy Connect – connection reset

There's new feature to 2.4 called reqtimeout_module. You have to comment all the statements in /etc/apache2/mods-available/reqtimeout.conf and restart the server.

You can also check http://httpd.apache.org/docs/current/mod/mod_reqtimeout.html for more detailed info.

Best Answer

Related Solutions

Nginx – How to Set Up as a Caching Reverse Proxy

Apache 2.4 Proxy Connect – connection reset

Related Topic