Issue Details (XML | Word | Printable)

Key: MDL-14659
Type: Improvement Improvement
Status: Resolved Resolved
Resolution: Fixed
Priority: Minor Minor
Assignee: Howard Miller
Reporter: Howard Miller
Votes: 0
Watchers: 2
Operations

Add/Edit UI Mockup to this issue
If you were logged in you would be able to see more operations.
Moodle

Cannot exclude domains or IP ranges from HTTP Proxy

Created: 02/May/08 06:40 PM   Updated: 12/May/08 04:24 PM
Return to search
Component/s: Administration
Affects Version/s: 1.9, 2.0
Fix Version/s: 2.0

Issue Links:
Blockers
 

Participants: Eloy Lafuente (stronk7), Howard Miller and Petr Skoda
Security Level: None
Resolved date: 12/May/08
Affected Branches: MOODLE_19_STABLE, MOODLE_20_STABLE
Fixed Branches: MOODLE_20_STABLE


 Description  « Hide
It would be really useful to be able to exclude ranges of IP addresses and/or domain suffixes from the proxy where a proxy has been set up. It's quite likely that you might want to access sites outside your organisation (needing a proxy) but also to access sites within (not needing the proxy). This would increase performance and reliability.

It would probably just look the same as the similar option in browsers. A small library function could check for proxy use based on the required URL and a match against the values in the list.

 All   Comments   Change History   Version Control      Sort Order: Ascending order - Click to sort in descending order
[ Permalink | « Hide ]
Eloy Lafuente (stronk7) added a comment - 05/May/08 05:48 AM
Good idea. Assigning this to Petr... thanks!

Eloy Lafuente (stronk7) made changes - 05/May/08 05:48 AM
Field Original Value New Value
Assignee Eloy Lafuente (stronk7) [ stronk7 ] Petr Skoda [ skodak ]
[ Permalink | « Hide ]
Petr Skoda added a comment - 05/May/08 06:11 AM
sorry, I do not understand this part "from the proxy where a proxy has been set up".
Are you talking about Moodle server behind a proxy? Or people accessing internet server from behind a proxy?

Also I do not understand why any restrictions of this kind would be "really useful"? Do you mean secure?

I always thought that firewalls with DMZs are easier to set up and more secure.


[ Permalink | « Hide ]
Eloy Lafuente (stronk7) added a comment - 05/May/08 08:40 AM
I guess Howard is talking about Moodle (the program) accessing to information stored in other computers (could be other mnet hosts, or webservices or filelib... ) any piece of code currently supporting $CFG->proxyhost.

The key is that not all those outgoing connections must be performed using the proxy (other intranet hosts, for example, need to be accessed without the proxy), and that's what Howard is proposing, if I'm not wrong.

Ciao


[ Permalink | « Hide ]
Howard Miller added a comment - 05/May/08 02:42 PM
Yes, Eloy is spot on - sorry if I wasn't clear.

Without being able to make exceptions every HTTP call that Moodle makes out will have to go through the proxy.

PS. Happy to produce some code for this for review. Of course, it means hooks all over the place.


[ Permalink | « Hide ]
Petr Skoda added a comment - 05/May/08 03:01 PM
Oh I see, now that mnet peers always go through proxy MDL-14624 it is a regression for people that have peers in one net behind the proxy
It might be better to revert MDL-14624 now in STABLE and work on this more in head.

[ Permalink | « Hide ]
Howard Miller added a comment - 05/May/08 03:15 PM
Yes - that was my worry too with MDL-14624. I think I agree - I'll back that out of stable, and fix the whole thing properly in HEAD.

Howard Miller made changes - 05/May/08 03:17 PM
Link This issue blocks MDL-14624 [ MDL-14624 ]
Howard Miller made changes - 05/May/08 04:21 PM
Assignee Petr Skoda [ skodak ] Howard Miller [ howardsmiller ]
thepurpleblob committed 2 files to 'Moodle CVS' - 06/May/08 10:51 PM
MDL-14659
Add bypass list for proxy usage.
MODIFY admin/settings/server.php   Rev. 1.41    (+2 -1 lines)
MODIFY lang/en_utf8/admin.php   Rev. 1.194    (+2 -0 lines)
thepurpleblob committed 3 files to 'Moodle CVS' - 06/May/08 10:59 PM
MDL-14659
Add bypass list for proxy usage.
MODIFY mnet/lib.php   Rev. 1.21    (+1 -1 lines)
MODIFY lib/filelib.php   Rev. 1.65    (+13 -8 lines)
MODIFY lib/moodlelib.php   Rev. 1.1040    (+48 -2 lines)
[ Permalink | « Hide ]
Howard Miller added a comment - 06/May/08 11:05 PM
Changes added to HEAD. AFAIK, this only seems to effect lib/filelib.php and mnet/lib.php. I couldn't see anything else that did outgoing HTTP requests. If anybody knows different, please let me know and I'll add them.

Mitsuhiro Yoshida committed 4 files to 'Lang CVS' - 06/May/08 11:07 PM
Translated new strings for admin bypass list for proxy usage MDL-14659.
Brushed up translated strings for blog and calendar.
MODIFY ja_utf8/blog.php   Rev. 1.31    (+2 -2 lines)
MODIFY ja_utf8/calendar.php   Rev. 1.22    (+7 -7 lines)
MODIFY ja_utf8/admin.php   Rev. 1.264    (+3 -1 lines)
MODIFY ja_utf8/README   Rev. 1.702    (+1 -1 lines)
martignoni committed 1 file to 'Lang CVS' - 07/May/08 01:20 AM
MDL-14659, new strings added
MODIFY fr_utf8/admin.php   Rev. 1.249    (+3 -1 lines)
[ Permalink | « Hide ]
Howard Miller added a comment - 12/May/08 04:24 PM
This functionality is now in HEAD. Please reopen if I missed anything.

Howard Miller made changes - 12/May/08 04:24 PM
Fix Version/s 2.0 [ 10122 ]
Status Open [ 1 ] Resolved [ 5 ]
Resolution Fixed [ 1 ]

Powered by a free Atlassian JIRA open source license for Moodle. Try JIRA - bug tracking software for your team.
Atlassian JIRA the Professional Issue Tracker. (Enterprise Edition, Version: 3.13.5-#360) - Bug/feature request - Atlassian news - Contact Administrators