Skip to main content
Contact a Moderator

Question

7
Replies
262
Views
 Michael Ward (cstarpgmr) Wells Fargo
Wells Fargo
US
cstarpgmr Member since 2009 4 posts
Wells Fargo
Posted: December 11, 2015
Last activity: December 14, 2015
Posted: 11 Dec 2015 13:11 EST
Last activity: 14 Dec 2015 12:49 EST
Closed
Solved

How can I access the x-forwarded data from the web login?

Report

Need to access the x-forwarded data from load balancer to obtain original requesting IP address?  How can I get this data?

Data Integration Security System Administration
Moderation Team has archived post, This thread is closed to future replies. Content and links will no longer be updated. If you have the same/similar Question, please write a new Question.
Posted: 6 years ago
Posted: 12 Dec 2015 8:28 EST
Kevin Zheng (KevinZheng_GCS) PEGA Director, Technical Support
Pegasystems Inc.
US

What is your PRPC version? I see we only honor the XFF headers since 7.1.9+. pxReqContextURI property should have what you are looking for.
Posted: 6 years ago
Posted: 14 Dec 2015 9:56 EST
Michael Ward (cstarpgmr) Wells Fargo
Wells Fargo
US

Thanks Kevin!

Unfortunately, were on 6.2 sp1 and our 7.1.9 implmentation will not happen until 3rd quarter next year.

I'll talk to our load balancer folks and see if they can parse out the needed data and send it as parameters on the redirect...
Posted: 6 years ago
Posted: 14 Dec 2015 10:24 EST
Chris Koyl (ChrisKoyl) PEGA Senior Fellow, Technical Support, Runtime Engine
Pegasystems Inc.
US

Michael,

Are you using custom authentication?   A PRCustom SSO Servlet?

If so you can grab any HTTP Headers, including X-Forwarded headers, during the login.
Posted: 6 years ago
Posted: 14 Dec 2015 10:28 EST
Michael Ward (cstarpgmr) Wells Fargo
Wells Fargo
US

Currently using PRWebLDAP1, but was thinking of creating a seprate servlet for the load balancer requests.  I could then parse out any xff data and pass whatever needed parameters on the PRWebLDAP1 redirect...

Accepted Solution

Posted: 6 years ago
Updated: 6 years ago
Posted: 14 Dec 2015 11:05 EST
Updated: 14 Dec 2015 11:08 EST
Chris Koyl (ChrisKoyl) PEGA Senior Fellow, Technical Support, Runtime Engine
Pegasystems Inc.
US

Michael,

You can grab the header in your Code-Security  login activity as defined in your Data-Admin-AuthService.

Use a property set step where the properties value is:

@java("((javax.servlet.http.HttpServletRequest)tools.getRequestor().getRequestorPage().getObject(\"pxHTTPServletRequest\")).getHeader(\"x-forwarded\")")

If you want to output to the logfile all the HTTP headers you are getting in the incoming request for debug purposes use the following in a Java step:

javax.servlet.http.HttpServletRequest request =
    (javax.servlet.http.HttpServletRequest)tools.getRequestor().getRequestorPage().getObject("pxHTTPServletRequest");


//debug
java.util.Enumeration e = request.getHeaderNames();
String header = null;
while (e.hasMoreElements()) {
      header = (String) e.nextElement();
      oLog.infoForced(header + ": " + request.getHeader(header));     
}

Remember to comment this JAVA step or comment the debug code after you are done with it.

--Chris

We'd prefer it if you saw us at our best.

Pega Collaboration Center has detected you are using a browser which may prevent you from experiencing the site as intended. To improve your experience, please update your browser.

Close Deprecation Notice