Hey,

I'm unsure if this is a problem with this package, or I'm just suppose to approach the problem differently.

If the target responds with a 304, the interceptor data property is empty.

proxy('http://cacheable.target.com', {
  intercept: function (proxyRes, data, req, res, next) {
    // 1st time is a full buffer <Buffer 1f 8b 08 00 00 00 00 00 00 ...>
    // 2nd time (when responding with a 304) it's an empty buffer <Buffer >
    console.log(data);
  }
});

I think it might choke in the case where there's a port with a trailing slash specified as host.

Eg:

app.use(proxy('http://fantasticmango:4242/', options));

Throws:

net.js:901
  throw new RangeError('port should be > 0 and < 65536: ' + port);
        ^
RangeError: port should be > 0 and < 65536: 0
  at Socket.connect (net.js:901:13)
  at Agent.exports.connect.exports.createConnection (net.js:92:35)

This is a bummer because url.parse() puts a trailing slash in the href property. To do it manually and generically the user needs to use hostname and port joined by a :, but only when port is present. Easier to strip the tail slash off maybe.

Want a PR to fix this in the library, or am I missing something?

I am using app code like this to work around (CS sorry):

if config.api.href[config.api.href.length - 1] is '/'
  safeHref = config.api.href.substr 0, config.api.href.length - 1
app.use proxy safeHref, options

I get this error when I use express-http-proxy >= 0.9.1:

Failed to convert header keys to lower case due to field name conflict: accept-encoding
Error: Failed to convert header keys to lower case due to field name conflict: accept-encoding
    at foo/node_modules/nock/lib/common.js:210:13
    at foo/node_modules/lodash/lodash.js:4332:15
    at baseForOwn (foo/node_modules/lodash/lodash.js:2731:24)
    at Function.forOwn (foo/node_modules/lodash/lodash.js:12042:24)
    at Object.headersFieldNamesToLowerCase (foo/node_modules/nock/lib/common.js:207:5)
    at RequestOverrider (foo/node_modules/nock/lib/request_overrider.js:111:30)
    at new OverriddenClientRequest (foo/node_modules/nock/lib/intercept.js:240:23)
    at foo/node_modules/nock/lib/intercept.js:363:13
    at Object.module.request (foo/node_modules/nock/lib/common.js:137:14)
    at runProxy (foo/node_modules/express-http-proxy/index.js:87:43)
    at invokeCallback (foo/node_modules/raw-body/index.js:262:16)
    at done (foo/node_modules/raw-body/index.js:251:7)
    at IncomingMessage.onEnd (foo/node_modules/raw-body/index.js:307:7)
    at emitNone (events.js:86:13)
    at IncomingMessage.emit (events.js:185:7)
    at endReadableNT (_stream_readable.js:975:12)

I see the release notes for 0.9.1 says "Set 'Accept-Encoding' header to match bodyEncoding". Perhaps something goes wrong in relation to this?

I would like to add some parameters to my proxies requests but these parameters are resolved asynchronously by functions that return promises. Is there any support for setting things like decorateRequest but in a way that will be resolved asynchronously?

Thanks for the great Express add-on!

When trying to send a large file through the proxy (more than 1 MB), an error event is thrown:

Error: request entity too large
at makeError (.../node_modules/express-http-proxy/node_modules/raw-body/index.js:184:15)
at module.exports (.../node_modules/express-http-proxy/node_modules/raw-body/index.js:40:15)
at handleProxy (.../node_modules/express-http-proxy/index.js:54:5)
at Layer.handle [as handle_request] (.../node_modules/express/lib/router/layer.js:82:5)
at trim_prefix (.../node_modules/express/lib/router/index.js:302:13)
at .../node_modules/express/lib/router/index.js:270:7
at Function.proto.process_params (.../node_modules/express/lib/router/index.js:321:12)
at next (.../node_modules/express/lib/router/index.js:261:10)
at serveStatic (.../node_modules/express/node_modules/serve-static/index.js:59:14)
at Layer.handle [as handle_request] (.../node_modules/express/lib/router/layer.js:82:5)

Could you use streams instead of reading the entire body into a buffer?

I'm currently using this library to intercept and inject some headers for my angular app, the proxy server is listening on port 3000 and forwarding to the host on port 8080

There are some scenarios where the proxied host responds with a redirect to a URL like:

• http://localhost:8080/#/thing/thingIdentifier

Note that the port is not quite what I need - I need it to be 3000.

As far I can tell, from looking at the source; this is not currently possible.

Questions:

1. Am I correct?
2. Has this requirement been raised before?
3. Does this seem like something reasonable to be implemented?

Let me know if I can provide more information.

Hi, great job on this proxy module.

I'm trying to add the proxy for websocket protocols but it does not work for you guys. Is there any plans to add that?

After the breakpoint debugging i found this issue, I'm not sure this is caused by raw-body or express-http-proxy, because i don't understand this line(source code of raw-body)

When trying to proxy POST requests with json data in the body the server receives an empty body.

I managed to work around it with:
app.use('/api..., proxy(be, { decorateRequest: function(reqOpt, req) { reqOpt.bodyContent = JSON.stringify(reqOpt.bodyContent) return reqOpt; } }));
It seems that bodyContent is an object instead of a string ...

Hi,

I can't make my host dynamic, i use this code snippet:

var proxy = require('express-http-proxy');
var app = require('express')();
app.use('/proxy', 
      function(req,res) {
          return proxy(req.session.dynamic_host);
      }
).listen(8080);
console.log("listening on port 8080")

The host is in the session params.

With this code, it try to download the page until the timeout appears, it seems to be a blocking some where but i have any idea how to solve it.

Please can someone help there ?

Hi,

If request fails with ECONNRESET, it writes to response but also proceeds to next route by calling next().
This usually results with next route trying to send another esponse and producing a "headers already sent" error.
Why is this so? I think it would make more sense to not call next() after response has already been sent

see
https://github.com/villadora/express-http-proxy/blob/master/index.js#L161

Probably not the right place for this, but how do I disable/destroy the proxy?
Or maybe even something that resembles this:

app.get('/make', function (req, res) {

    subdomain = 'sub1'; //From DB
    originalSite = 'www.example.com';
    app.use(vhost(subdomain+'.mysite.com', proxy(originalSite)));
    res.send("Created");
});

app.get('/destroy', function (req, res) {

   ????? 
});

I am not able to get an HTTPS proxy to work since updating to Node 5.6. Any chance I could get some help with this?

I'm attempting proxy a post to a different host with a specific port number but I'm getting the following error.

net.js:927
throw new RangeError('port should be >= 0 and < 65536: ' + port);
^

RangeError: port should be >= 0 and < 65536: 3002path1/path2
at lookupAndConnect (net.js:927:13)
at Socket.connect (net.js:904:5)
at Agent.exports.connect.exports.createConnection (net.js:63:35)
at Agent.createSocket (_http_agent.js:174:16)
at Agent.addRequest (_http_agent.js:143:23)
at new ClientRequest (_http_client.js:133:16)
at Object.exports.request (http.js:31:10)
at c:\Users\jeff.pierson\Source\ReadyTouch\uk\gmaweb\node_modules\express-http-proxy\index.js:96:50
at IncomingMessage.onEnd (c:\MYWEBAPPDIR\node_modules\express-http-proxy\node_modules\raw-body\index.js:149:7)
at IncomingMessage.g (events.js:260:16)

Notice the text 3002path1/path2 which makes it look like the port number is being smashed together with the path when constructing the URL.

In Usage section, you mentioned one example to intercept proxy response. It give following error.

ReferenceError: wrap is not defined

at following lines.

req.bodyContent = wrap(req.bodyContent);

Can you please fix it? also let me know if I'm doing something wrong here.

Hi guys,

I'm having the following situation over here: based on the incoming request I want to decide to proxy to host x or y. So ideally I want to evaluate the host(req) function every time there is request to my proxy instead of evaluating only the first time.

I've looked into the source code and see multiple solutions. One of them is removing this line of code (if statement to check if the host is already determined in a previous request), this won't break tests. Instead of removing we can also extend the if statement to make it a little smarter.

I'm curious about your vision on this topic.

A custom port value passed to proxy() like proxy('http://localhost:5678') is completely ignored, even though some layers of the code seem to expect or support this.

parseHost has logic for returning an object containing a port inside the host string.

However, the exported proxy() function splits apart the passed-in host string and overwrites the input host with whatever is on the left side of the host:port prior to the point where parseHost() is called.

The port on the right-hand side of the original input is then never read - the reqOpt object gets assigned a field port: options.port || parsedHost.port, but since the original input host was overwritten after the string splitting, the parsedHost.port never contains anything but the default port for the protocol.

This results in a usage like proxy('http://localhost:8080') in sending proxied requests to port 80 on localhost, not 8080.

Hi,

thanks for the wonderful project. This module is saving me a lot of time.

I was wondering if there is a way to reverse proxy to a https server?

thanks

I have configured a proxy that works perfectly for GET requests, but the request JSON body doesn't get through on POST requests.

app.use('/cart', proxy(GS_API_URL, {
  reqAsBuffer: true,
  reqBodyEncoding: null,
  decorateRequest: function(proxyReq, originalReq) {
    proxyReq.headers = {
      'Authorization': 'Bearer ' + originalReq.session.gsApiToken
    };
    return proxyReq;
  },
  forwardPath: function(req) {
    return '/v1/cart' + req.path;
  },
  intercept: function(targetResponse, responseData, req, res, callback) {
    if (targetResponse.statusCode === 401) {
      req.session.destroy();
      return callback(new gsErrors.UnauthorizedError('API token rejected while fetching cart contents'));
    }
    return callback(null, responseData);
  }
}));

I recently added the reqAsBuffer and reqBodyEncoding options after seeing #114, but that doesn't seem to help. I have tried this with only reqAsBuffer set and without either of those two set. I do have body-parser running on this app, but that middleware is after the proxy.

At the destination server, I'm running body-parser on this request and it sets req.body to an empty object. I previously had this API running on the Express server where I'm currently building the proxy, so I'm certain the front-end is sending the body as intended. Can you see why I'm not able to get the JSON body through the proxy to my other Express server?

UPDATE: I should clarify that the GET request I have working through the proxy does not have a body. The problem might be that the body is not getting through regardless of the method.

Hello villadora,

How can I get access to the response headers of the response sent by the target server. I need to authenticate the response from the target based on response headers. Can we change the code to something like:

 if (intercept) {
            intercept(rsp, rspData, req, res, function(err, rspd, sent) {
              if (err) {

This will mimic the request modules callback signature too, which is request(requestOpts, function (err, response, body)

While not in the documentation, the code allows the 'proxy' to be a function or a string - in our case the code is much cleaner (since we don't know the final proxy protocol or url until the request comes in.

However, the check for https does not work properly because the test does not call the function.

Line 19: var ishttps = /^https/.test(host);

Delaying the https determination until after the method is called and returns a url would be reasonable.

Presently, there are two options if using intercept: return/send the content, or throw an error. The third option that is not available is to continue the middleware chain normally, taking no action.

I dont think I ought to have to compose Error-middleware to handle failure cases of http-proxy; intercept should let me simply call next() to continue the processing chain.

If I do try to call a naked next(), say- on this line- I get TypeError: Cannot read property 'length' of undefined. This should instead continue the middleware chain normally instead, I feel.

Is it possible to add a string of query parameters to the end of the path of the proxy request before sending?

I've tried adding ProxyReq.query in decorateRequest and formatting the parameters as a JSON object and also tried as a string, but doesn't look like decorateRequest handles query parameters that way.

Just wanted to see if there was a way to do it. Thanks!

Edit: I ended up working it out by adding the query parameters to proxyReq.path in decorateRequest.

Can be avoided by:

process.env.NODE_TLS_REJECT_UNAUTHORIZED = "0" # Avoids DEPTH_ZERO_SELF_SIGNED_CERT error for self-signed certs

But maybe there is a better option.
I didn't find the option in your readme.

There is an option called rejectUnauthorized.
https://nodejs.org/api/tls.html

Seems that it's the option to look into:

var req = (ssl ? https : http).request({ rejectUnauthorized������������������������������������������������������: false })

You'll have to make an opiton for this one

You can easily detect this from the code.
ishttps is resolved in constructor.
however if "host" is function, it should be resolved in handleProxy just like the hostname - but its not.

the proxy basically does not allow me to dynamically decide the host and support https at the same time.

major issue, might have to use some other library.

Allow passing port in the options.

If an exception occurs while parsing the proxied response, a 'Can't set headers after they are sent' error is thrown. This also causes my node server to exit.

The stack trace looks like this:

Error: Can't set headers after they are sent.
    at ServerResponse.OutgoingMessage.setHeader (_http_outgoing.js:335:11)
    at ServerResponse.header (/Users/jenniferrullmann/code/proj/node_modules/express/lib/response.js:718:10)
    at ServerResponse.send (/Users/jenniferrullmann/code/proj/node_modules/express/lib/response.js:176:10)
    at /Users/jenniferrullmann/code/proj/node_modules/express-http-proxy/index.js:147:21
    at app.use.proxy.intercept (/Users/jenniferrullmann/code/proj/server.js:47:7)
    at IncomingMessage.<anonymous> (/Users/jenniferrullmann/code/proj/node_modules/express-http-proxy/index.js:113:13)
    at emitNone (events.js:72:20)
    at IncomingMessage.emit (events.js:166:7)
    at endReadableNT (_stream_readable.js:905:12)
    at doNTCallback2 (node.js:441:9)

If I modify https://github.com/villadora/express-http-proxy/blob/master/index.js#L120 code to check if the headers have been set:

if (!res.headersSent) {
    res.send(rspData);
}

then I can see that an error occured parsing the proxied response body:

Error: Parse Error
    at Error (native)
    at TLSSocket.socketOnData (_http_client.js:305:20)
    at emitOne (events.js:77:13)
    at TLSSocket.emit (events.js:169:7)
    at readableAddChunk (_stream_readable.js:146:16)
    at TLSSocket.Readable.push (_stream_readable.js:110:10)
    at TLSWrap.onread (net.js:523:20)

Here's a SO question that goes into detail about why this happens. It appears that something upstream of express-http-proxy is calling writeHead earlier than usual because of this parsing error.

For now, I'm working around the problem by intercepting the response in my server, so my node server stays up and I can see the root exception.

  // Proxy requests to the upstream API
  app.use('/api', proxy(upstream_api_url, {
    intercept: function(rsp, data, req, res, callback) {
      callback(null, data, res.headersSent);
    }
  }))

Seems like adding a check for headersSent before calling res.send would fix the issue, and I could remove the silly workaround.

I needed to add some code to forward postdata properly.
after getRawBody the bodyContent is an object.
maybe because I used the bodyParser middlewhare?

app.use(bodyParser.json());
app.use(bodyParser.urlencoded({
    extended: false
}));

my solution was changing line 87 to:

bodyContent = require('querystring').stringify(reqOpt.bodyContent);

but maybe this will only work with body parser.
if it can be a tring before we can do

bodyContent = typeof bodyContent == 'string' ? bodyContent : require('querystring').stringify(reqOpt.bodyContent);

Hi,

Thanks for the great module!

I'm trying to use decorateRequest to add an X-Forwarded-For header, so the back-end service has some idea of the original endpoint. It looks like the IP address of the request (req.ip) isn't available as an option in reqOpt:

  var reqOpt = {
    hostname: (typeof host == 'function') ? host(req) : host.toString(),
    port: port,
    headers: hds,
    method: req.method,
    path: path,
    bodyContent: bodyContent,
    params: req.params
  };

Would it be possible to add this in ? Or perhaps there is a better way to set X-Forwarded-For ?
Thanks!

Looking to see the proxied html/js as strings. Not too sure how to go about this. Can you please advise?

Hi,

I don't know what it is but the requests i am processing are not getting forwarded to another docker container. The request is always stopping due to a timeout.

app.use('/proxy', proxy('secondhost:8080', {
   forwardPath: function(req, res) {
    return require('url').parse(req.url).path;
  }
}));

secondhost is written in the /etc/hosts file by docker-compose.

When I attach to the container docker exec -i -t first_container bash I can ping the second host and make http requests with curl.

What is wrong here?

My project is using nsp and getting this complaint. Is jscs needed other than devDependencies?

11:37:10 1 vulnerabilities found
│
│ Regular Expression Denial of Service │ Name │ minimatch │
│ Installed │ 2.0.10
│ Vulnerable │ <=3.0.1 │
│ Patched │ >=3.0.2 │
│ Path │ [email protected] > [email protected] > [email protected] > [email protected] > [email protected]
│
│ More Info │ https://nodesecurity.io/advisories/118

But when I post same data to the third server, it return ok. how can I do?
1, post to the third server .
curl -X "POST" http://localhost:9000/v2/images -d '{"image": {}}'

• Hostname was NOT found in DNS cache
• Trying ::1...
• connect to ::1 port 9000 failed: Connection refused
• Trying 127.0.0.1...
• Connected to localhost (127.0.0.1) port 9000 (#0)

  POST /v2/images HTTP/1.1
  User-Agent: curl/7.35.0
  Host: localhost:9000
  Content-type: application/json
  Accept:application/json
  Content-Length: 13

• upload completely sent off: 13 out of 13 bytes
• HTTP 1.0, assume close after body
  < HTTP/1.0 400 Bad Request
  < Date: Fri, 26 Sep 2014 14:52:05 GMT
  < Server: WSGIServer/0.1 Python/2.7.6
  < Content-Type: text/html; charset=UTF-8
  < Content-Length: 0
  <
• Closing connection 0

2, post to proxy. it waits for a timeout.
curl -X "POST" http://localhost:3000/proxy/v2/images -d '{"image": {}}' -H "Content-type: application/json" -H "Accept:application/json" -v

• Hostname was NOT found in DNS cache
• Trying ::1...
• connect to ::1 port 3000 failed: Connection refused
• Trying 127.0.0.1...
• Connected to localhost (127.0.0.1) port 3000 (#0)

  POST /proxy/v2/images HTTP/1.1
  User-Agent: curl/7.35.0
  Host: localhost:3000
  Content-type: application/json
  Accept:application/json
  Content-Length: 13

• upload completely sent off: 13 out of 13 bytes
• Empty reply from server
• Connection #0 to host localhost left intact
  curl: (52) Empty reply from server

Can you add options for connection timeout?
request.socket.setTimeout(60000); // 60 sec

I can see a lot of errors:
Error: connect ETIMEDOUT
at exports._errnoException (util.js:746:11)
at TCPConnectWrap.afterConnect as oncomplete

Thanks

Hi @villadora,

I'm having some troubles when trying to proxy a host containing a 301 redirect.

Basically, I'm redirect(as usual) to target's domain, leaving my localhost proxy environment.

You can use as example: http://globo.com

Thank you in advance.

Hi, I am trying to proxy a multipart file request to my Java Spring server but for some reason the file bytes that Spring receives is not the same as the file that was uploaded. For example, a file whose byte array length is 3000 is transformed to about 6000. Any ideas why that's happening ?

This is the snippet that does proxies the request:

  var apiProxy = proxy('http://localhost:8080', {
      forwardPath: function (req, res) {
          return '/api/v2/photos/upload';
      }
  });

  app.all("/api/upload", apiProxy);

Maybe I am being ignorant. I am using this module for the first time today. But in all my tests, the "Connection" header is always "close". It should be "alive" as per HTTP 1.1

Am I doing something wrong?

Hi there,
I have used your lib to create a proxy server. I use body-parser and multer middleware for parsing request bodies.
everything is going fine except for the multipart requests. is there anyway to proxy these requests?

I am getting the following error when intercepting the data, using the intercept function:

 Error: Can't set headers after they are sent.

I have a nodejs app running at localhost:4000 From here I want to proxy to localhost:15672 and authorize the user directly to his homepage. so localhost:4000/manage should show the response from localhost:15672/#/login/user/password

A simple app.get does work, but the URL contains credentials in pathname and so want to find an internal way to use it somehow. I am using express-http-proxy library already, but dont understand how to change pathname before sending the request. I have been stuck way too long, so a quick help will be greatly appreciated.

I have tried this but does not work:

`app.use('/manage', ensureAuthenticated, proxy('http://localhost:15672', {
decorateRequest: function(reqOpt){
reqOpt.hostname = 'localhost:15672';
reqOpt.path = '/manage/#/login/user/password';
return reqOpt;
}

}))
app.listen(4000);`

I am getting the below error when proxying to an HTTPS address and only when using Node 4:

Error: write EPROTO
    at Object.exports._errnoException (util.js:874:11)
    at exports._exceptionWithHostPort (util.js:897:20)
    at WriteWrap.afterWrite (net.js:763:14)

If I switch back to node 0.12, everything works fine. This may very well be an issue on my end but it is strange this only happens when I change to Node 4. Any ideas?

Here's the relevant code:

https://github.com/villadora/express-http-proxy/blob/master/index.js#L43

Shouldn't that return next() instead, so nothing else runs?

I need to tack on a property to a json response within the proxy before it hits the client. I'm currently using forwardPath and decorateRequest but I'm not sure how is expected to be done. Is this something that I should be using intercept with?

Thanks for the library, it has been serving me great since I got it set up!

Hello Villadora,

I can't seem to intercept html in a response body - here is the test case : topheman@264e451

Other use case where intercept doesn't work : https://api.github.com/
Even if it's json returning and I can access data in the intercept callback, but there is an encoding problem (though everything is in utf8).

Tophe

I am trying to run the following example from the docs and would like to modify it to reach to one of my Web applications. But this gives me errors like wrap not defined and if I remove wrap, it says
TypeError: Cannot read property 'length' of undefined. I know I am missing something, I am new to Nodejs and Express but any help will be great.

//Example code
app.use('/proxy', proxy('www.google.com', {
  decorateRequest: function(reqOpt, req) {
    reqOpt.headers['Content-Type'] = '';
    reqOpt.method = 'GET';
    reqOpt.bodyContent = wrap(req.bodyContent);
    return reqOpt;
  }
}));

Also my use case is to reach to 'https://localhost:3000/api/user' and add header as
reqOpt.headers['X-WEBAUTH-USER'] = 'test';
so I can reach to my local app bypassing the login page for user 'test'. Am I on the right track to use the decorateRequest function for this?

Can it support https proxy?