https://community.qlik.com/t5/Management-Governance/Reverse-proxy-with-custom-authentication-module-problem-with/m-p/1363151#M10296 <HTML><HEAD></HEAD><BODY><P>We are also dealing with problem and are missing a good solution!</P></BODY></HTML> Mon, 22 May 2017 12:53:42 GMT 2017-05-22T12:53:42Z https://community.qlik.com/t5/Management-Governance/Reverse-proxy-with-custom-authentication-module-problem-with/m-p/1363148#M10293 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>I have a Qlik Sense environment with IIS reverse proxy and a custom authentication (ticketing) module. The problem is that the TargetId (and thus TargetURI) that Qlik Sense provides to the authentication module uses the URL that the IIS reverse proxy uses to access Qlik Sense and not the URL that the end user uses when accessing the IIS reverse proxy.</P><P>Any ideas how to configure the reverse proxy setup so that the ticketing works correctly?</P><P></P><P><SPAN>e.g. the user accesses the reverse proxy using “</SPAN><A class="jive-link-external-small" href="https://reverse.proxy.company.com/hub”" rel="nofollow" target="_blank">https://reverse.proxy.company.com/hub”</A><SPAN> which passes the request to Qlik Sense at the address “</SPAN><A class="jive-link-external-small" href="http://sense.internal:8080/reverse/hub”" rel="nofollow" target="_blank">http://sense.internal:8080/reverse/hub”</A><SPAN>. The request is then forwarded to the authentication module at “</SPAN><A class="jive-link-external-small" href="https://authentication.company.com”" rel="nofollow" target="_blank">https://authentication.company.com”</A><SPAN> with a TargetId corresponding to a TargetURI of “</SPAN><A class="jive-link-external-small" href="http://sense.internal:8080/reverse/hub”" rel="nofollow" target="_blank">http://sense.internal:8080/reverse/hub”</A><SPAN>. When the user has authenticated a redirect is sent to the TargetURI which obviously is not accessible for the end user.</SPAN></P><P></P><P></P><P>BR,</P><P>-Christian</P></BODY></HTML> Fri, 07 Apr 2017 19:19:34 GMT https://community.qlik.com/t5/Management-Governance/Reverse-proxy-with-custom-authentication-module-problem-with/m-p/1363148#M10293 celindho 2017-04-07T19:19:34Z https://community.qlik.com/t5/Management-Governance/Reverse-proxy-with-custom-authentication-module-problem-with/m-p/1363149#M10294 <HTML><HEAD></HEAD><BODY><P>Dear Christian,</P><P></P><P>did you manage to solve this issue ?</P><P></P><P>Best regards,</P><P>Karl</P></BODY></HTML> Fri, 19 May 2017 15:43:11 GMT https://community.qlik.com/t5/Management-Governance/Reverse-proxy-with-custom-authentication-module-problem-with/m-p/1363149#M10294 2017-05-19T15:43:11Z https://community.qlik.com/t5/Management-Governance/Reverse-proxy-with-custom-authentication-module-problem-with/m-p/1363150#M10295 <HTML><HEAD></HEAD><BODY><DIV><P>No, we did not manage to solve this in a pretty way. We bult a URL rewrite into the auth module. Not nice, but got the job done.</P></DIV></BODY></HTML> Fri, 19 May 2017 16:28:08 GMT https://community.qlik.com/t5/Management-Governance/Reverse-proxy-with-custom-authentication-module-problem-with/m-p/1363150#M10295 celindho 2017-05-19T16:28:08Z https://community.qlik.com/t5/Management-Governance/Reverse-proxy-with-custom-authentication-module-problem-with/m-p/1363151#M10296 <HTML><HEAD></HEAD><BODY><P>We are also dealing with problem and are missing a good solution!</P></BODY></HTML> Mon, 22 May 2017 12:53:42 GMT https://community.qlik.com/t5/Management-Governance/Reverse-proxy-with-custom-authentication-module-problem-with/m-p/1363151#M10296 2017-05-22T12:53:42Z https://community.qlik.com/t5/Management-Governance/Reverse-proxy-with-custom-authentication-module-problem-with/m-p/1519596#M12061 <P>Same issue as mentioned. Changed our reverse proxy functionality to bigip (f5 waf) - and now the targetId references to the internal server address.</P><P>Could not find any difference in the initial GET request from browser (cookies, header, parameters etc.).</P><P>Any news about this? Could not find anything how QlikSense is generating the targetID.</P><P>&nbsp;</P> Wed, 12 Dec 2018 06:43:02 GMT https://community.qlik.com/t5/Management-Governance/Reverse-proxy-with-custom-authentication-module-problem-with/m-p/1519596#M12061 patrickdoerr 2018-12-12T06:43:02Z https://community.qlik.com/t5/Management-Governance/Reverse-proxy-with-custom-authentication-module-problem-with/m-p/1520872#M12076 <P>From Qlik Sense November 2018, you can set the "X-Forwarded-Host" header (you can set in your reverse proxy rules to set this header on all requests) to the reverse proxy url so that the targetURI is built correctly.&nbsp;</P> <P>For previous versions, I am afraid you will need to build the URI in your authentication module code as you have already done.</P> <P>&nbsp;</P> <P><A href="https://qliksupport.force.com/articles/000060728" target="_blank">https://qliksupport.force.com/articles/000060728</A></P> Fri, 14 Dec 2018 09:05:50 GMT https://community.qlik.com/t5/Management-Governance/Reverse-proxy-with-custom-authentication-module-problem-with/m-p/1520872#M12076 Damien_V 2018-12-14T09:05:50Z https://community.qlik.com/t5/Management-Governance/Reverse-proxy-with-custom-authentication-module-problem-with/m-p/1520879#M12077 <P>Thanks for your help!</P><P>Got it already working by setting the "Host"-header static to public DNS in our reverse proxy.</P><P>We did some debugging with proxy logs (debug level on), and could identify this header as the problem.</P><P>Sadly my last post here with the solution got lost.. <span class="lia-unicode-emoji" title=":disappointed_face:">😞</span></P><P>We will try the "X-Forwarded-Host" too, because it seems like the better solution instead of rewriting a existing header.</P><P>&nbsp;</P><P>Kind regards</P><P>Patrick Doerr</P> Fri, 14 Dec 2018 08:51:38 GMT https://community.qlik.com/t5/Management-Governance/Reverse-proxy-with-custom-authentication-module-problem-with/m-p/1520879#M12077 patrickdoerr 2018-12-14T08:51:38Z