[#ZBXNEXT-9855] Web Monitoring with redirects should include Authorization headers

[ZBXNEXT-9855] Web Monitoring with redirects should include Authorization headers Created: 2025 Feb 27 Updated: 2025 Feb 27
Status:	Open
Project:	ZABBIX FEATURE REQUESTS
Component/s:	None
Affects Version/s:	None
Fix Version/s:	None

Type:

New Feature Request

Priority:

Trivial

Reporter:

Sayaka Hirai

Assignee:

Unassigned

Resolution:

Unresolved

Votes:

Labels:

None

Remaining Estimate:

Not Specified

Time Spent:

Not Specified

Original Estimate:

Not Specified

Issue Links:

Related
related to	ZBX-26011	Web Monitoring Authentication Handlin...	Need info

Description

Web Monitoring with redirects needs an option to send authentication credentials to the target.

Currently Zabbix uses CURLOPT_FOLLOWLOCATION option of libcurl to follow redirects, but curl 7.58.0 or later no longer send authorization headers to subsequent hosts. This may interfere with web monitoring.
CURLOPT_UNRESTRICTED_AUTH must be enabled to follow redirects.
Related fix of libcurl: https://curl.se/docs/CVE-2018-1000007.html

This request is derived from ZBX-26011

Generated at Sat Apr 12 09:27:35 EEST 2025 using Jira 9.12.4#9120004-sha1:625303b708afdb767e17cb2838290c41888e9ff0.

[ZBXNEXT-9855] Web Monitoring with redirects should include Authorization headers Created: 2025 Feb 27 Updated: 2025 Feb 27