mirror of
https://github.com/fosrl/newt.git
synced 2026-07-15 21:16:40 -05:00
[GH-ISSUE #343] Newt 1.12.4 causes redirect loop on HTTPS private (HTTP) resources — 308 redirects to self #8709
Reference in New Issue
Block a user
Delete Branch "%!s()"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
Originally created by @lmcemaj on GitHub (May 8, 2026).
Original GitHub issue: https://github.com/fosrl/newt/issues/343
Describe the Bug
After upgrading from Newt 1.12.3 to 1.12.4, all HTTPS private resources (HTTP mode) enter an infinite 308 redirect loop. Newt's HTTP handler redirects GET / to the same URL it received, instead of proxying to the configured destination. Downgrading to 1.12.3 resolves the issue.
I suspect this is related to the changelog entry: "Update status code on redirect for http resources to 308".
Environment
Pangolin: 1.18.3 (Enterprise Edition, self-hosted)
Newt: 1.12.4 (broken) → 1.12.3 (working)
Image: fosrl/newt:latest
Site type: Newt site connector
Resource type: Private resource, HTTP mode, SSL enabled
Client: Pangolin Client (Olm) on macOS, accessing via browser/curl
To Reproduce
Expected Behavior
Newt's HTTP handler proxies the request to the configured destination (e.g. http://10.0.0.50:8000), and the backend response is returned to the client.
@AstralDestiny commented on GitHub (May 8, 2026):
When you have TLS option disabled?
@lmcemaj commented on GitHub (May 8, 2026):
You mean this on the Private Ressource settings? Enabled for all ressources.
@AstralDestiny commented on GitHub (May 8, 2026):
Yeah think Owen put it on the wrong entrypoint will get it fixed asap.
@AstralDestiny commented on GitHub (May 8, 2026):
It's supposed to only be served on the http side not https
@LaurenceJJones commented on GitHub (May 8, 2026):
#345
@oschwartz10612 commented on GitHub (May 8, 2026):
Fixing in 1.12.5