Gatekeeper: how to handle origin server redirect responses (HTTP 301)

sharpedavid · March 13, 2020, 10:13pm

I set-up a small local project consisting of Gatekeeper, Keycloak, and a “Hello World” Java web application.

I instructed Gatekeeper to secure - uri: /UnsecureApplication/*.
I navigated to https://gatekeeper.com:3000/UnsecureApplication (missing trailing slash).
The web application responded with HTTP 301 to https://unsecure-application.com:8181/UnsecureApplication/ (with trailing slash).

Now, in my case for this local example I can reach unsecure-application.com, but in a real implementation this would only be reachable on the private network.

How can I instruct Gatekeeper to rewrite the HTTP 301 response location header to from unsecure-application.com to gatekeeper.com? If this the best solution?

When it comes to proxies and networks I am a beginner, so my apologies if this is off base.

jangaraj · March 14, 2020, 9:21am

That is not right task for Gatekeeper. Your app should be aware that is behind reverse proxy and app should use proper host from request header (e.g. from X-Forwarded-Host) instead of current Host header.

Topic		Replies	Views
Location header with changed redirect_uri Getting advice authentication	2	1761	November 24, 2020
How to stop users from directly accessing the web application behind Gatekeeper Securing applications	4	820	March 12, 2020
How to configure Gatekeeper to support CORS Getting advice gatekeeper	3	3172	November 17, 2019
Gatekeeper Deep-Links Redirect Url http://my-host.com#test Securing applications	2	2899	June 22, 2020
Redirect loop logging into Master realm behind Apache reverse proxy	3	4488	December 13, 2021

Gatekeeper: how to handle origin server redirect responses (HTTP 301)

Related topics