How to send only whitelisted http headers to backend?
dridi at varni.sh
Tue Oct 15 21:46:37 UTC 2019
On Tue, Oct 15, 2019 at 2:22 PM Jeff Potter
<jpotter-varnish at codepuppy.com> wrote:
> Hi All,
> This seems like an easy task, but I haven’t been able to figure out how to do it or find any posts online. Is there a way to only send certain headers to a backend?
> I.e. in our application, we know we only need X-Forwarded-For and Cookie headers. I know I can unset other known headers (User-Agent, etc) — but how can I unset *all* other headers?
> (We’re on VCL format 4.0.)
This is not doable in VCL, this kind of header whitelisting could be
implemented with a VMOD but I'm not aware of any one doing that.
More information about the varnish-misc