Bug 1520539 - [GSS](6.4.z) AccessLogValve only logs first occurrence of a request header
Summary: [GSS](6.4.z) AccessLogValve only logs first occurrence of a request header
Keywords:
Status: CLOSED CURRENTRELEASE
Alias: None
Product: JBoss Enterprise Application Platform 6
Classification: JBoss
Component: Web
Version: 6.4.18
Hardware: Unspecified
OS: Unspecified
unspecified
unspecified
Target Milestone: CR1
: EAP 6.4.20
Assignee: jboss-set
QA Contact: Michael Cada
URL:
Whiteboard:
Depends On:
Blocks: eap6420-payload 1527822
TreeView+ depends on / blocked
 
Reported: 2017-12-04 16:32 UTC by Aaron Ogburn
Modified: 2021-06-10 13:49 UTC (History)
3 users (show)

Fixed In Version:
Doc Type: If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed: 2019-08-19 12:43:08 UTC
Type: Bug
Embargoed:

Attachments (Terms of Use)

Description Aaron Ogburn 2017-12-04 16:32:20 UTC 
Description of problem:

The JBossWeb AccessLogValve only logs the first occurrence of a request header.  This can hide desired or expected values from being logged.

Version-Release number of selected component (if applicable):


How reproducible:

Always


Steps to Reproduce:
1. Set up access logging to include an incoming header

                <access-log pattern="%h %l %u %A %v %t %r %s %b %{X-Forwarded-For}i"/>

2.  Attempt a request with multiple header occurrences and note the logged results:

curl -H "X-Forwarded-For: 127.0.0.2" -H "X-Forwarded-For: 127.0.0.3" localhost:8080/app

Actual results:

Only first occurrence of a request header is logged

Expected results:

All occurrences of a request header are logged

Additional info:

Similar to the following issue in Tomcat:

http://svn.apache.org/viewvc?view=revision&revision=1088460
Comment 3 Jiří Bílek 2018-04-27 11:45:23 UTC 
Regression tests passed
Verified with EAP 6.4.20.CP.CR1
Note You need to log in before you can comment on or make changes to this bug.