Return-Path: 
 <users-return-87132-apmail-httpd-users-archive=httpd.apache.org@httpd.apache.org>
Delivered-To: apmail-httpd-users-archive@www.apache.org
Received: (qmail 5342 invoked from network); 1 Apr 2009 03:11:13 -0000
Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.3)
  by minotaur.apache.org with SMTP; 1 Apr 2009 03:11:13 -0000
Received: (qmail 9945 invoked by uid 500); 1 Apr 2009 03:11:09 -0000
Delivered-To: apmail-httpd-users-archive@httpd.apache.org
Received: (qmail 9884 invoked by uid 500); 1 Apr 2009 03:11:08 -0000
Mailing-List: contact users-help@httpd.apache.org; run by ezmlm
Precedence: bulk
Reply-To: users@httpd.apache.org
list-help: <mailto:users-help@httpd.apache.org>
list-unsubscribe: <mailto:users-unsubscribe@httpd.apache.org>
List-Post: <mailto:users@httpd.apache.org>
List-Id: <users.httpd.apache.org>
Delivered-To: mailing list users@httpd.apache.org
Received: (qmail 9875 invoked by uid 99); 1 Apr 2009 03:11:08 -0000
Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230)
    by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 01 Apr 2009 03:11:08 +0000
X-ASF-Spam-Status: No, hits=2.2 required=10.0
	tests=HTML_MESSAGE,SPF_PASS
X-Spam-Check-By: apache.org
Received-SPF: pass (nike.apache.org: domain of mike.lyon@gmail.com designates
 209.85.221.109 as permitted sender)
Received: from [209.85.221.109] (HELO mail-qy0-f109.google.com)
 (209.85.221.109)
    by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 01 Apr 2009 03:11:00 +0000
Received: by qyk7 with SMTP id 7so5489577qyk.10
        for <users@httpd.apache.org>; Tue, 31 Mar 2009 20:10:39 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=gamma;
        h=domainkey-signature:mime-version:received:date:message-id:subject
         :from:to:content-type;
        bh=zgAxd0kM3Ku3sezlzr+9UALLb7zLiPPcZN/7/y4FnLw=;
        b=kxU10qo0u9gzRhZLemAYxVtc3MPpoH1K8OdfPkD98TP8XkuFa9dg42iPL8kG2t+FMm
         VygYiAxD8dnhRFhFyd8rgh76/k21+7CPcoCKYgFWTQ7TBuG7ZXEaCRpmLbA7E75MXwwV
         PeRPaanNKjXVx/6eKgSWemqgwLkfkpZgfEoQQ=
DomainKey-Signature: a=rsa-sha1; c=nofws;
        d=gmail.com; s=gamma;
        h=mime-version:date:message-id:subject:from:to:content-type;
        b=lDAOrwfM64wgze2f1AZkL9kO4kboyVSQnqX66YTHUI7KhNgIg+xoOX1k8vU33db9DM
         FhbfRYIp0LR61T82r4dAVc0KQjC+w4ABQ5IeHThYlbgs3WiG0lVIOam0dze7dJUt85tr
         YARrCuKkaSZPzT4nuJV5gvRBlAYi58+HYVVdY=
MIME-Version: 1.0
Received: by 10.224.28.207 with SMTP id n15mr9410356qac.100.1238555439417;
	Tue, 31 Mar 2009 20:10:39 -0700 (PDT)
Date: Tue, 31 Mar 2009 20:10:39 -0700
Message-ID: <1b5c1c150903312010i3acacf41n9efe909b692ebc17@mail.gmail.com>
From: Mike Lyon <mike.lyon@gmail.com>
To: users <users@httpd.apache.org>
Content-Type: multipart/alternative; boundary=0015175cb55600b7b3046675a9bf
X-Virus-Checked: Checked by ClamAV on apache.org
Subject: [users@httpd] mod_rewrite on reverse proxies...

--0015175cb55600b7b3046675a9bf
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit

Howdy All,

Is anyone out there using mod_rewrite to rewrite URLs that pass through
their reverse proxies? I am using Apache as an SSL offloader for some web /
app servers that sit behind it. I have it up and working great. The only
problem is that the app will return to the client (via the reverse-proxy of
course) HTML that includes hrefs to itself that point to "
http://app1.example.com" not "https://app1.example.com."

So when the client gets this HTML and wants to get content from the href it
was just given from the app server, it wants to connect back to the proxy
via http, not https. This defies the whole reason why we are doing SSL.

So what I would like to know is if there is a way I can rewrite those hrefs
when they go from the server to the client with mod_rewrite so the client is
pointed to an SSL href and not just a regular http href. Is something that
mod_rewrite is capable of doing?

Thank You,
Mike

--0015175cb55600b7b3046675a9bf
Content-Type: text/html; charset=ISO-8859-1
Content-Transfer-Encoding: quoted-printable

Howdy All,<br><br>Is anyone out there using mod_rewrite to rewrite URLs tha=
t pass through their reverse proxies? I am using Apache as an SSL offloader=
 for some web / app servers that sit behind it. I have it up and working gr=
eat. The only problem is that the app will return to the client (via the re=
verse-proxy of course) HTML that includes hrefs to itself that point to &qu=
ot;<a href=3D"http://app1.example.com">http://app1.example.com</a>&quot; no=
t &quot;<a href=3D"https://app1.example.com">https://app1.example.com</a>.&=
quot;<br>
<br>So when the client gets this HTML and wants to get content from the hre=
f it was just given from the app server, it wants to connect back to the pr=
oxy via http, not https. This defies the whole reason why we are doing SSL.=
<br>
<br>So what I would like to know is if there is a way I can rewrite those h=
refs when they go from the server to the client with mod_rewrite so the cli=
ent is pointed to an SSL href and not just a regular http href. Is somethin=
g that mod_rewrite is capable of doing?<br>
<br>Thank You,<br>Mike<br><br>

--0015175cb55600b7b3046675a9bf--