To be congruent with other popular http clients the port should be stripped from the 'Host' field when the port is 80.

[celer]

Hi,

So we encountered an interesting problem today, less so a bug with node-http-proxy but more of a incongruent behavior from when compared against other browsers and client's we've tested.

When working with cloudfoundry.com we found that their proxy did not consider a request to port 80 the same if the port was explicitly specified in the 'Host' header field.

So a request to http://foo.cloudfoundry.com:80/ and http://foo.cloudfoundry.com/ behaved differently. We narrowed it down to the difference in the Host field. The changeOrign logic included the port when crafting the 'Host' header regardless of the port number.

• http://foo.cloudfoundry.com:80/ has a Host header of "Host: foo.cloudfoundry.com:80"
• http://foo.cloudfoundry.com/ has a Host header of "Host: foo.cloudfoundry.com"

No big deal right? Well so everyone else strips port 80 because it is the default :(

• Curl strips port 80 from the Host header
• wget strips port 80 from the Host header
• Safari strips port 80 from the Host header
• Firefox strips port 80 from the Host header
• Chrome strips port 80 from the Host header

You can test the behavior using "http://helloworld-ng.cloudify.com:80/" and "http://helloworld-ng.cloudify.com/" - notice that both URLs work the same in all of the above listed browsers

In curl we can see the failure case

$ curl http://helloworld-ng.cloudfoundry.com:80/ -H "Host: helloworld-ng.cloudfoundry.com:80"
<html>
<head><title>404 Not Found</title></head>
<body bgcolor="white">
<center><h1>404 Not Found</h1></center>
<hr><center>nginx</center>
</body>
</html>
$ curl http://helloworld-ng.cloudfoundry.com:80/ -H "Host: helloworld-ng.cloudfoundry.com"
Hello from Cloud Foundry

(We've asked cloudfoundry to fix this issue, but to be clear the behavior in node-http-proxy is incongruent with every other client and browser we've tested)

So then the question becomes - should node-http-proxy do the same? Sadly it seems like this shouldn't be an issue but it is an unexpected behavior and no one else does it - hence why I think node-http-proxy should strip port 80 from the Host field if it is specified.

[celer]

Please see

request/request#515

For details about how each client handles a URL with port 80 specified.

[mikeal]

this assumes 80 is default, what about https?

[celer]

So the behavior appears to be he same with all the clients - although a bit harder to test. But they all strip 443 from the host field when using https.

So I used a simple nodejs server and the various development tools with the browsers to verify the behavior.

var fs = require('fs');
var http = require('https');
var privateKey  = fs.readFileSync('privatekey.pem').toString();
var certificate = fs.readFileSync('certificate.pem').toString();

var credentials = {key: privateKey, cert: certificate};
var express = require('express');
var server = express();

var app = express();

app.use(express.bodyParser());
app.use(express.methodOverride());
app.use(app.router);

app.get("/",function(req,res){
  console.log(req.headers);
  console.log("Got /");
  res.send("hello");
});

var https = http.createServer(credentials, app);

https.listen(443);

[indexzero]

Use this.target.port == 80 for type coercion

[indexzero]

Use this.target.protocol to determine if it should be 443 or 80.

[indexzero]

No updates from @celer. Closing.