Bug 34773 - Urge squid to use the X-Forwarded-For HTTP header
Urge squid to use the X-Forwarded-For HTTP header
Product: UCS@school
Classification: Unclassified
Component: Proxy services
UCS@school 3.2 R2
Other Linux
: P5 enhancement (vote)
: UCS@school 3.2 R2
Assigned To: Sönke Schwardt-Krummrich
Florian Best
Depends on: 34025
Blocks: 25762
  Show dependency treegraph
Reported: 2014-05-08 09:49 CEST by Sönke Schwardt-Krummrich
Modified: 2014-06-12 09:20 CEST (History)
0 users

See Also:
What kind of report is it?: ---
What type of bug is this?: ---
Who will be affected by this bug?: ---
How will those affected feel about the bug?: ---
User Pain:
Enterprise Customer affected?:
School Customer affected?:
ISV affected?:
Waiting Support:
Flags outvoted (downgraded) after PO Review:
Ticket number:
Bug group (optional):
Max CVSS v3 score:


Note You need to log in before you can comment on or make changes to this bug.
Description Sönke Schwardt-Krummrich univentionstaff 2014-05-08 09:49:53 CEST
"squid/forwardedfor=on" should be set in ucs-school-webproxy to enable the "guess the teachers room by identifying the teachers client IP" feature in UMC computerroom module.

+++ This bug was initially created as a clone of Bug #34025 +++

It seems that some webpages can't parse the X-Forwarded-For HTTP-Header (e.g. turnier.de, alleturniere.de) if the header value is "unknown". The webpages respond with a "Bad Request".
By default in ucs the squid configuration directive for X-Forwarded-For is "off" (see /etc/univention/templates/files/etc/squid3/squid.conf line 219).
This yields to the described "unknown" value in the header.

Setting the configuration directive to "on" or "delete" according to squid-cache.org/Doc/config/forwarded_for/ works with the provided webpages.
I suggest "delete" as default value in the squid.conf.
Furthermore it should be possible to set the configuration directive in the ucr.
Comment 1 Sönke Schwardt-Krummrich univentionstaff 2014-05-08 15:11:01 CEST
ucs-school-webproxy (10.0.3-1)

The variable will be set during update to UCS@school 3.2R2 and during fresh installation of ucs-school-webproxy. Package has been rebuilt and announced.

A changelog entry has been commited.
Comment 2 Florian Best univentionstaff 2014-05-08 16:05:45 CEST
Variable is set during update. Changelog OK.
Comment 3 Sönke Schwardt-Krummrich univentionstaff 2014-06-12 09:19:23 CEST
UCS@school 3.2 R2 has been released:

If this error occurs again, please use "Clone This Bug".