Possible to fix admin URL behind proxy issue without hacking core?

I threw this question around on Twitter and asked for feedback from some other core developers. My gut instinct was to make $current_url either filterable or generated by a function that could be overridden. This is, apparently, the wrong way about it.

@markoheijnen:
@EricMann Resetting $_SERVER['HTTP_HOST'] sounds like a hackish solution. Same code then can be in wp-config.php

‏@nacin:
@EricMann @markoheijnen Putting it in wp-config is proper. It is not WP’s job to handle reverse proxy situations.

@EricMann @markoheijnen Ideally, they should be set properly before WP (or even PHP) is loaded. wp-config is the alternative.

@markoheijnen:
@nacin @ericmann In this case the server/proxy is wrong configured. So I can see why it then should be fixed in wp-config

From the sounds of this converation, you have two options:

  1. Reconfigure your proxy to set the correct host values before things even get to PHP/WP.
  2. Manually clean and set up $_SERVER['HTTP_HOST'] in your wp-config.php file.

I thought a bit more, and here’s some actual code you could add to wp-config.php to set things up (based on the hacky patch that changes core files):

if ( ! empty( $_SERVER['HTTP_X_FORWARDED_HOST'] ) ) {
    $_SERVER['HTTP_HOST'] = $_SERVER['HTTP_X_FORWARDED_HOST'];
}

This should set things up such that the default core files don’t need any modification to function correctly. But please note that I can’t test this since I don’t have any kind of proxy setup to verify it against … so if this code doesn’t help fix your situation, please report back and we can try something else.


Related Posts:

  1. Use hooks for undo/redo admin actions?
  2. How to: Avoid a bunch of useless Auto Draft ID entries related in posts table and disable autosave feature in ‘post-new.php’?
  3. Replace core wordpress file with my own
  4. How to make changes to wordpress core files and make them resistant to wordpress updates?
  5. performing HTTP requests with cURL (using PROXY)
  6. HTTPS connections over proxy servers
  7. Axios having CORS issue
  8. How to set proxy for wget?
  9. How to get pip to work behind a proxy server
  10. How do I set the proxy to be used by the JVM
  11. git returns http error 407 from proxy after CONNECT
  12. Proxy Error 502 : The proxy server received an invalid response from an upstream server
  13. First run of Android Studio. Unable to access Android SDK add-on list
  14. How to use NGINX as forward proxy for any requested location?
  15. PIP Could not find any downloads that satisfy the requirement SQLAlchemy
  16. Forwarding port 80 to 8080 using NGINX
  17. How can I speed up my WP admin section?
  18. changing wp-admin/widgets.php
  19. Add class to before_widget from within a custom widget
  20. How to disable core and plugin updates
  21. How to use the HTTP API with a Proxy?
  22. How to share WordPress core library
  23. Cleaning up WordPress to improve performance?
  24. How to update the delete user confirmation form?
  25. How can I modify what is being output in wp_head, whether by a theme or WordPress in general?
  26. Modifying the media-template.php file, the right way?
  27. How to remove X-Frame-Options: SAMEORIGIN” from WordPress?
  28. WordPress behind Proxy – Mixed Content
  29. How to edit or override a Core function?
  30. How to remove wordpress admin bar in dashboard
  31. How can I change permalinks to use a different domain and path from where the blog is hosted?
  32. Changing a WordPress core function without hacking core
  33. Two domains on one WordPress Installation
  34. WP-CLI alias: connect with ssh proxy
  35. How can I add my script to admin using script-loader.php?
  36. Mixed Content with SSL, wordpress behind a reverse proxy
  37. 302 redirect to signup with nginx reverse proxy
  38. Outgoing proxy connection problem
  39. Subdirectory multisite installation with several domain names?
  40. Proxy not working with Requests::request_multiple()?
  41. What problems maybe happen if I remove “wp-” prefix from wordpress folders and files?
  42. How to Dequeue All WordPress Assets
  43. Edit admin post page
  44. Infinite loop behind SSL proxy on non-standard port
  45. How to overwrite / extent wordpress function is_email
  46. How to make this change without changing the core? [duplicate]
  47. wp-login behind nginx reverse-proxy inaccessible — bad redirect?
  48. Should there be concern about breaking Gutenberg updates to extended core blocks?
  49. How to run WordPress behind a reverse proxy so that extensions still can detect the path
  50. multisite subdomain behind reverse proxy
  51. StoreFront product pages: Turn the Short Description section into a kindred tab section [closed]
  52. Create highly customized submenu (possibly using wp_list_pages)
  53. WordPress updates being blocked by proxy
  54. Alter wp_post table vs. post_meta performance/speed
  55. How WordPress is able to change locale without using setlocale
  56. Updated to version 3.8 and Admin pages are very slow. How to diagnose problem? [closed]
  57. Removing subcategories from permalinks [duplicate]
  58. How to modify files inside wp-includes directory in wordpress
  59. Safely editing core files
  60. Add Password Generator on password protected page
  61. WP API and Proxy
  62. Why There Is No “get content by ID” Function
  63. How to be sure to get last page version without ANY cache?
  64. How can I reference external attachments without breaking core WordPress files?
  65. How does WordPress format the url on a 301 when a trailing slash is missing?
  66. Who updates the wp-admin/core file?
  67. How WordPress core manage the plugin installation
  68. Where does wordpress gets its core and plugin updates
  69. How to authenticate a user with an external webservice
  70. Create custom WP_List_Table in post_type
  71. AJAX request not routing through proxy
  72. Can’t login to WordPress admin panel after changing domain to use WordPress pages as a fallback from React
  73. How can I insert code into the pluggable.php file without it getting deleted after a wordpress update
  74. loading images, css and fonts from site url
  75. How to remove the ManageBlocksMenuItem in the ToolsMoreMenuGroup in the Gutenberg Editor?
  76. Trying to Decide Between Reverse-proxy and Multisite
  77. Login cookies blocked after customizing hashing method
  78. Error while localizing communityEventsData in script-loader.php
  79. Bedrock Boilerplate under a sub-directory and access through a reverse proxy setup
  80. WordPress is not loading resources
  81. Attachment metadata has value of ‘1’
  82. Return raw image proxy for wordpress plugin
  83. WordPress login loop on proxy setup with SSL – Apache proxy to IIS
  84. Custom WordPress Core upgrade through wp-cli
  85. How does WordPress get the upgrade URL?
  86. Local domain remap with proxy : Infinite 301 redirect, bad URL typo
  87. Installation problem with wordpress xampp
  88. Redirecting a POST to a php script
  89. Object Cache – Avoid db queries totally
  90. disable WP_error: authentication_failed
  91. Removing a line from a WP core function (comment_template.php) – filter or other technique?
  92. ouput buffering confusing me!
  93. How to watermark wordpress images from wp-content/uploads folder with htaccess and php?
  94. how to server over http and https with one installation
  95. Integrating WordPress for blog and other content pages in a web app
  96. Enhancing core WordPress code for private and public projects?
  97. WordPress stuck at Step 1 of setup behind nginx reverse proxy
  98. How to set up Nginx as a caching reverse proxy?
  99. SSH from A through B to C, using private key on B [closed]
  100. Customize Notification Email Sent to New User When Manually Created by Site Administrator

Leave a Comment