WebSocket via HTTP proxy

最新推荐文章于 2024-05-28 20:32:11 发布
最新推荐文章于 2024-05-28 20:32:11 发布
阅读量4.7k 收藏 1
点赞数
分类专栏: websocket HTML5 文章标签: html5 websocket

original link https://blogs.oracle.com/PavelBucek/entry/websocket_via_http_proxy


WebSocket via HTTP proxy

By Pavel Bucek on Jul 16, 2013

As you might know, WebSocket can be used for bi-directional "real-time" communication with multiple clients. What does that mean in proxy environments and how this even works? WebSocket uses HTTP upgrade mechanism specified in HTTP 1.1 and by design requires open (TCP) connection.

HTTP CONNECT is there for exactly these usecases. It is usually used for tunneling HTTPS via proxy, but it can be used for WebSocket as well.

I will describe complete "proxified" handshake using captured connection of Tyrus Client connecting to public echo service - echo.websocket.org. Please note that we are directly using Tyrus API - not WebSocket specification (JSR-356), because we need to set a proxy.

final ClientManager client = ClientManager.createClient();

client.getProperties().put(
  GrizzlyClientSocket.PROXY_URI, "http://my.proxy:8080"
);
final Session session = client.connectToServer(new Endpoint() {

  @Override
  public void onOpen(Session session, EndpointConfig config) {
    session.addMessageHandler(new MessageHandler.Whole<String>() {
      @Override
      public void onMessage(String message) {
        System.out.println("# Message received: " + message);
      }
    });
  }
}, ClientEndpointConfig.Builder.create().build(),
   URI.create("ws://echo.websocket.org"));

session.getBasicRemote().sendText("test message");

BTW, Tyrus Client proxy support can be improved, currently it does not support proxy authentication, JDK's ProxySelector and so on. Please vote/comment on TYRUS-204 if you lack some of the mentioned options or anything else related to proxy support.

Current modern browsers do support this out of the box, so all you need is to set your HTTP proxy and described handshake will be done automatically. There might be limitation for parallel open connection in browser tab/instance, but I don't have any exact data about this.

Also, you might ask whether there is some need to server-side support - simple answer is "no". HTTP containers will see regular connection (from proxy), there is no additional work or overhead on that side.

Lets see our dumped communication:

client > proxy
CONNECT echo.websocket.org:80 HTTP/1.1
Host: echo.websocket.org
Proxy-Connection: keep-alive
Connection: keep-alive

Firstly, client need to send a request to proxy for new "permanent" connection. As already mentioned, CONNECT method handles this. First argument is a hostname (echo.websocket.org) and standard HTTP version.

proxy > client
HTTP/1.0 200 Connection established

If you are lucky, your proxy does support CONNECT and allows you to create connection (HTTP 200 is returned).

client > proxy
GET / HTTP/1.1
Connection: Upgrade
Host: echo.websocket.org
Origin: echo.websocket.org
Sec-WebSocket-Key : sDD3Wk7PMRCPE9+C0VyOcQ==
Sec-WebSocket-Version: 13
Upgrade: websocket

This is standard WebSocket handshake request, which will be passed to target HTTP container.

proxy > client
HTTP/1.1 101 Web Socket Protocol Handshake
Upgrade: WebSocket
Connection: Upgrade
Sec-WebSocket-Accept: 8TNIHr7bJHqQadjXYvqLql6RFEA=
Date: Tue, 16 Jul 2013 15:30:53 GMT
...

And there is a valid response to our handshake request, connection is established and communication can be started; there is nothing else different than in proxy-less environment. Please note that proxies do have limited resources and your request may be turned down because proxy "CONNECT" pool is empty.

Conclusion here is that WebSocket can work via proxies without any limitation, it just introduces different kind of traffic than pure HTTP and might cause some additional requirements related to proxy performance in case you are going to use WebSocket for long-running client connections.


Comments:

Hi Pavel,

Thanks for the explanation, that really did help me to understand the handshake. I have a scenario, wherein the connection initiation is successful and the proxy returns a HTTP/1.0 200 Connection established, but the SSL handshake fails.

HTTP/1.0 500 handshakefailed
Via: 1.0 10.X.X.X (McAfee Web Gateway 7.2.0.1.0.13253)
Content-Type: text/html
Cache-Control: no-cache
Content-Length: 2063
Proxy-Connection: Close

Any suggestions why is it failing?

Posted by Srini on September 04, 2013 at 08:05 AM CEST #

Hi Srini,

you should add -Djavax.net.debug=all (seehttp://docs.oracle.com/javase/1.5.0/docs/guide/security/jsse/ReadDebug.html for more details). It usually is certificate issue, in your case it might be because the other side does not have properly signed certificate and you don't have truststore and/or keystore properly set on client side.

Feel free to send more details to users@tyrus.java.net.

Posted by guest on September 09, 2013 at 10:11 AM CEST #


zhang-guojun
关注
  • 0
    点赞
  • 1
    收藏
    觉得还不错? 一键收藏
  • 0
    评论
专栏目录
WebSocketHTTP Proxy下是可以,可是有点小笨拙之处给人造成不便
weixin_34050427的博客
05-27 996
2019独角兽企业重金招聘Python工程师标准>>> ...
HTTPWebSocket协议的区别与联系
end's coding life
02-20 9605
那天和boss聊天,不经意间提到了Meteor,然后聊到了WebSocket,然后就有了以下对话,不得不说,看问题的方式不同,看到的东西也会大不相同。 A:Meteor是一个很新的开发框架,我觉得它设计得十分巧妙。 B:怎么个巧妙之处? A:它的前后端全部使用JS,做到了真正的前后端统一;前端浏览器里存有一份后台开放出来的数据库的拷贝,快;使用WebSocket协议来做数据传输协议,来同步前后端的...
http代理服务器(socket)
05-18
这是一款http代理服务器,是用java实现的socket编程,实现代理,过滤的功能
通过配置http proxy解决websocket不能连接的问题
热门推荐
pushme_pli的专栏
12-11 1万+
前两天玩websocket除了问题,我把解决的过程写成了一片博客: https://blog.csdn.net/pushme_pli/article/details/84891838 其中提到关键问题是使用了http proxyhttp-proxy-middleware,后来解决的方法是不用proxy了,这只是避开了这个问题, 仔细研究了下,可以通过proxy配置的方法解决这一问题。 ...
WebSocketClient设置代理Proxy
qq_46134549的博客
05-06 4828
工作中有时需要使用websocket通过线下机器请求线上接口,这时候就需要在配置proxy,配置代理方法很简单,首先需要找到WebSocketClient中设置代理的方法 Proxy方法里 InetSocketAddress里面可以写代理ip和端口号 然后在你自己的类中去调用该方法 TestWebSocketClient client = null; try { client.setProxy(new Proxy(Proxy.Type.HTTP, new Ine
官网解读-WebSocket proxying
qq_41904061的博客
09-07 650
http协议升级机制:https://developer.mozilla.org/zh-CN/docs/Web/HTTP/Protocol_upgrade_mechanism To turn a connection between a client and server from HTTP/1.1 into WebSocket, theprotocol switchmechanism ava...
ws-tcp-proxy:简单的WebSocket TCP代理
04-29
简单的websocket tcp代理。 Usage: ws-tcp-proxy <address> [flags] Flags: -a, --auto-cert string register hostname with LetsEncrypt -c, --cert string path to cert.pem for TLS -k, --key string path ...
hyperswarm-proxy-ws:具有自动重新连接逻辑的Websocket上的代理超群连接
05-08
超群代理 具有自动重新连接逻辑的Websocket上的代理超群连接 npm -s hyperswarm-proxy-ws ...// Start listening on clients via websocket protocol server . listen ( 3472 ) const HyperswarmClient
HTTPWebSocket 协议(上)
Quiet_boy
12-26 1448
HTTP vs WebSocket 那天和boss聊天,不经意间提到了Meteor,然后聊到了WebSocket,然后就有了以下对话,不得不说,看问题的方式不同,看到的东西也会大不相同。 A:Meteor是一个很新的开发框架,我觉得它设计得十分巧妙。 B:怎么个巧妙之处? A:它的前后端全部使用JS,做到了真正的前后端统一;前端浏览器里存有一份后台开放出来的数据库的拷贝,快;使用WebSo
websocket 并发_1230万个并发WebSocket
cullen2012的博客
09-10 3658
websocket 并发One thing about WebSockets is that you need a lot of resources on the client's side to generate high enough load for the server to actually eat up all the CPU resources. 关于WebSockets的一件事是,...
HTTPS 代理-SNI Proxy-WebSocket-Java
01-20
HTTPS 代理-SNI Proxy-WebSocket 一直用sni proxyhttps反向代理,但最近公司网站使用了WebSocket功能而sni proxy不支持。网上搜了一圈,也没找到简单的解决方案。用NGINX折腾了一天,但搭出来的系统很不稳定。干脆用java自己写了个小程序,性能当然和squid、nginx之类的没法比,还好我们的系统负荷不是很重,运行了一个星期基本没问题。 附件是该 java 程序包。 使用方法: 1。 安装java 2。在命令行输入: java -jar HttpProxy.jar 监听IP地址 监听TCP端口 是否SSL 转发服务器IP 转发服务器端口 转发是否SSL 如果 “转发服务器IP” 填 “DNS” (不是DNS服务器地址,就是输入DNS三个字母) 则通过DNS查找转发服务器 3。主要功能:HTTPS 转发、HTTPS反向代理、HTTPHTTPS、HTTPS转HTTP 4。如果最后再加个参数”保存目录“,则所有转发的数据保存在该目录中,程序排错时比较有用
SOCKS 代理 和 HTTP 代理, && WebSocket
最新发布
shuizhizhiyin的专栏
05-28 1604
SOCKS 代理更像是一个网络连接的中介,它支持各种协议,提供更高的透明性和灵活性;而 HTTP 代理则专用于处理 HTTP 请求,并提供了一些安全功能。选择哪种代理取决于你的具体需求。
Go 实现 Websocket 服务以及代理
Sakura的博客
02-01 2521
WebSocket 是一种在单个 TCP 连接上进行全双工通信的协议。WebSocket 使得客户端和服务器之间的数据交换变得更加简单,允许服务端主动向客户端推送数据。Websocket 主要用在B/S架构的应用程序中,在 WebSocket API 中,浏览器和服务器只需要完成一次握手,两者之间就直接可以创建持久性的连接, 并进行双向数据传输。它的最大特点就是,服务器可以主动向客户端推送信息,客户端也可以主动向服务器发送信息,是真正的双向平等对话,属于服务器推送技术的一种。
webSockethttp关系、WebSocket原理
ruby_xc的博客
10-12 399
一、WebSocketHTML5中的协议,支持持久连接;而Http协议不支持持久连接。首先HTMl5指的是一系列新的API,或者说新规范,新技术。WebSocketHTML5中新协议、新API.Http协议本身只有1.0和1.1,也就是所谓的Keep-alive,把多个Http请求合并为一个。二、WebSocket是什么样的协议,具体有什么优点。首先,相对于Http这种非持久的协议来说,WebS
java http代理设置
Java 初学者
04-08 216
Java HTTP Proxy Settings Posted on May 4, 2007 by Imran Aziz Overview For local networks within an organization, access to the public-domain Internet is often via a HTTP Proxy. This article talks...
c++ websocket客户端_基于 Unix Socket 的可靠 Node.js HTTP 代理实现(支持 WebSocket 协议)...
weixin_39517546的博客
11-25 217
作者@欲休 | https://www.cnblogs.com/accordion/p/12457505.html实现代理服务,最常见的便是代理服务器代理相应的协议体请求源站,并将响应从源站转发给客户端。而在本文的场景中,代理服务及源服务采用相同技术栈(Node.js),源服务是由代理服务fork出的业务服务(如下图),代理服务不仅负责请求反向代理及转发规则设定,同时也负责业务服务伸缩扩...
frp 内网穿透(httphttps、websocketproxy protocol)
qq_31220203的博客
03-10 1万+
http正向代理,httphttps、tcp、websocket内网穿透
推荐:WebsocketProxy —— 简单高效的WebSocket反向代理解决方案
gitblog_00100的博客
05-23 936
推荐:WebsocketProxy —— 简单高效的WebSocket反向代理解决方案 websocketproxyWebSocket reverse proxy handler for Go项目地址:https://gitcode.com/gh_mirrors/we/websocketproxy 项目介绍 在现代的Web开发中,WebSocket协议因其双向通信的能力而被广泛应用于实时应用,如...
websocket通信端口代理到TCP通信端口的方法记录
weixiao的博客
06-02 3193
1、代理服务基于go语言实现 2、代理服务源码 package main import ( "flag" "fmt" "log" "net" "net/http" "os" "runtime" "github.com/gorilla/websocket" ) var g_tcpAddress string var upgrader = websocket.Upgrader{ CheckOrigin: func(r *http.Request) bool { ..
Vue实现WebSocketHTTP POST请求实例与代码详解
在Vue应用中,实现WebSocket请求和HTTP POST请求是常见的功能,特别是在实时通信或者需要双向数据流的场景下。本文将详细介绍如何在Vue组件中使用`sockjs-client`和`stompjs`库来处理WebSocket连接,并提供一个实例...
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值