Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Host header needs to be overridden to avoid redirection #3743

Open
RakhithaRR opened this issue Feb 28, 2025 · 0 comments
Open

Host header needs to be overridden to avoid redirection #3743

RakhithaRR opened this issue Feb 28, 2025 · 0 comments
Labels
Affected/APIM-4.1.0 Type/Bug

Comments

@RakhithaRR
Copy link

Description

The host header present in a given request can be changed via the client who is initiating the request, which will allow the request to be redirected to the now changed location header which takes its value from the host header (i.e. https://localhost/ can be redirected to https://localhost1/carbon after the host header is set to localhost1). The host header needs to be overridden from a configuration level in order to prevent this.

Steps to Reproduce

N/A

Version

4.1.0

Environment Details (with versions)

No response
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
Affected/APIM-4.1.0 Type/Bug
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@RakhithaRR