| Re: [jetty-users] Issue with Jetty Web Sockets behind IIS Reverse Proxy |
Joakim,
Thanks for the response, here is what we ended up doing to fix the issue: Issue is being caused by Jetty supporting deflate per message and the browser requesting this, however IIS does not support this. Due to this browser-Jetty communication via IIS does not support websocket upgrade and the connection fails. In order to get this working make sure the feature requested by the browser does not reach IIS. In IIS add the following rule in ARR: Add to server variables: Add a blank rewrite rule: Conditions: (MATCH ALL) {HTTP_UPGRADE} matches the pattern ^websocket$ {HTTP_SEC_WEBSOCKET_EXTENSIONS} matches the pattern . Server variables: Action type: NONE Make sure the rule is at the top so it gets executed first.
Manpreet From: jetty-users-bounces@xxxxxxxxxxx <jetty-users-bounces@xxxxxxxxxxx> On Behalf Of Joakim Erdfelt
This wouldn't be the first time we've received reports about IIS messing with the websocket upgrade request headers before it reaches Jetty.
Check the headers at the Jetty side, make sure they have the following present (to be a valid WebSocket upgrade request). This is documented in https://tools.ietf.org/html/rfc6455#section-4.1 (Client Requirements, Page 17, starting with bullet point 1 "The handshake MUST be a valid HTTP request" ...)
We've had reports that various IIS configurations will mess around with the websocket upgrade request to a point where it is no longer a valid (or intended) upgrade request. Double / Triple check this.
Note that Jetty 9.2.x, the version you came from, supported Alpha/Beta/Draft versions of the WebSocket spec, which are no longer supported on Jetty 9.4.x. It could be that your version of IIS doesn't support the finalized spec https://tools.ietf.org/html/rfc6455 (published Dec 2011) Joakim Erdfelt / joakim@xxxxxxxxxxx
On Thu, Oct 1, 2020 at 12:29 AM Manpreet Singh <manpreet.singh@xxxxxxx> wrote:
|