Higress + Nacos MCP Registry 转发请求时使用后端服务的域名作为 Host #2177
Labels
area/config
help wanted
Extra attention is needed
level/challenge
sig/controller
type/enhancement
New feature or request
Comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
If you are reporting any crash or any potential security issue, do not
open an issue in this repo. Please report the issue via ASRC(Alibaba Security Response Center) where the issue will be triaged appropriately.
Ⅰ. Issue Description
如果在 Nacos MCP Registry 中注册了一个使用域名的 MCP Server,Higress 在转发请求的时候仍旧保持了客户端请求时使用的 Host,在后端服务对 Host 有校验或者配置了路由规则的情况下,请求可能无法正常被处理。
Ⅱ. Describe what you expected to happen
当后端服务使用域名作为地址时,建议使用该域名作为转发请求时的 Host 头,原始 Host 可以使用其他 Header 字段进行传递。
Ⅲ. Anything else we need to know?
Envoy auto_host_rewrite: https://www.envoyproxy.io/docs/envoy/latest/api-v3/config/route/v3/route_components.proto#envoy-v3-api-field-config-route-v3-routeaction-auto-host-rewrite
Ⅳ. Environment:
higress-registry.cn-hangzhou.cr.aliyuncs.com/higress/higress镜像使用latesttag(目的是修复 Nacos 3.x 的认证问题)2.1.2tag。The text was updated successfully, but these errors were encountered: