Determine current page url when using off box SSL termination

Question

How can you determine the current request URL if using off box SSL termination?

E.g.

Browser has url httpS://yourserver/
SSL Termination decrypts and sends onto http://yourserver
IIS/ASP.NET receives request at http://yourserver

At (3) if you use Context.Request.Url, Page.Request.Url or Page.Request.RawUrl it show a url with a http protocol and not httpS

How do get the public httpS URL that was origionally used at (1) in this case?

I am aware of things like relative and protocol-relative url's but they won't help in this particular case. — Ryan, Apr 02 '14 at 14:42
Your proxy could add an HTTP header for offloaded SSL connections. — Ufuk Hacıoğulları, Apr 02 '14 at 14:59

score 0 · Accepted Answer · edited May 23 '17 at 10:25

The convention used for Microsoft Products is to add a header at the reverse proxy.

Front-End-Https : On

So you know the http url is really https.

You could also add in your own header containing the original URL if you did something like URL translation (e.g. something like "Original-Uri").

This page shows how to do this using IIS AAR as the reverse proxy, though in my testing I could only get headers to pass through if they are prefixed with HTTP_ (which is later stripped out).

Determine current page url when using off box SSL termination

1 Answers1