Skip to main content

This content is closed to future replies and is no longer being maintained or updated.
Links may no longer function. If you have a similar request, please write a new post.

Question

 Michael Ward (cstarpgmr) Wells Fargo
Wells Fargo
US
cstarpgmr Member since 2009 4 posts
Wells Fargo
Posted: Dec 11, 2015
Last activity: Dec 14, 2015
Posted: 11 Dec 2015 13:11 EST
Last activity: 14 Dec 2015 12:49 EST
Closed
Solved

How can I access the x-forwarded data from the web login?

Need to access the x-forwarded data from load balancer to obtain original requesting IP address?  How can I get this data?

Data Integration Security System Administration
Posted: 7 years ago
Posted: 14 Dec 2015 9:56 EST
Michael Ward (cstarpgmr) Wells Fargo
Wells Fargo
US

Thanks Kevin!

Unfortunately, were on 6.2 sp1 and our 7.1.9 implmentation will not happen until 3rd quarter next year.

I'll talk to our load balancer folks and see if they can parse out the needed data and send it as parameters on the redirect...
Posted: 7 years ago
Posted: 14 Dec 2015 10:24 EST
Chris Koyl (ChrisKoyl) PEGA Senior Fellow, Technical Support, Runtime Engine
Pegasystems Inc.
US

Michael,

Are you using custom authentication?   A PRCustom SSO Servlet?

If so you can grab any HTTP Headers, including X-Forwarded headers, during the login.
Posted: 7 years ago
Posted: 14 Dec 2015 10:28 EST
Michael Ward (cstarpgmr) Wells Fargo
Wells Fargo
US

Currently using PRWebLDAP1, but was thinking of creating a seprate servlet for the load balancer requests.  I could then parse out any xff data and pass whatever needed parameters on the PRWebLDAP1 redirect...

Accepted Solution

Posted: 7 years ago
Updated: 7 years ago
Posted: 14 Dec 2015 11:05 EST
Updated: 14 Dec 2015 11:08 EST
Chris Koyl (ChrisKoyl) PEGA Senior Fellow, Technical Support, Runtime Engine
Pegasystems Inc.
US

Michael,

You can grab the header in your Code-Security  login activity as defined in your Data-Admin-AuthService.

Use a property set step where the properties value is:

@java("((javax.servlet.http.HttpServletRequest)tools.getRequestor().getRequestorPage().getObject(\"pxHTTPServletRequest\")).getHeader(\"x-forwarded\")")

If you want to output to the logfile all the HTTP headers you are getting in the incoming request for debug purposes use the following in a Java step:

javax.servlet.http.HttpServletRequest request =
    (javax.servlet.http.HttpServletRequest)tools.getRequestor().getRequestorPage().getObject("pxHTTPServletRequest");


//debug
java.util.Enumeration e = request.getHeaderNames();
String header = null;
while (e.hasMoreElements()) {
      header = (String) e.nextElement();
      oLog.infoForced(header + ": " + request.getHeader(header));     
}

Remember to comment this JAVA step or comment the debug code after you are done with it.

--Chris

We'd prefer it if you saw us at our best.

Pega Collaboration Center has detected you are using a browser which may prevent you from experiencing the site as intended. To improve your experience, please update your browser.

Close Deprecation Notice