Merge pull request #310 from desimone/bug/262

proxy: handle double slash in paths

cmd/pomerium/main.go

@@ -118,6 +118,7 @@ func newProxyService(opt config.Options, r *mux.Router) (*proxy.Proxy, error) {
 
 func newGlobalRouter(o *config.Options) *mux.Router {
 	mux := httputil.NewRouter()
+	mux.SkipClean(true)
 	mux.Use(metrics.HTTPMetricsHandler(o.Services))
 	mux.Use(log.NewHandler(log.Logger))
 	mux.Use(log.AccessHandler(func(r *http.Request, status, size int, duration time.Duration) {

docs/docs/CHANGELOG.md

@@ -14,6 +14,7 @@
 ### Fixed
 
 - Fixed an issue where CSRF would fail if multiple tabs were open. [GH-306](https://github.com/pomerium/pomerium/issues/306)
+- Fixed an issue where pomerium would clean double slashes from paths.[GH-262](https://github.com/pomerium/pomerium/issues/262)
 
 ### Changed
 

proxy/handlers.go

@@ -20,7 +20,9 @@ import (
 
 // Handler returns the proxy service's ServeMux
 func (p *Proxy) Handler() http.Handler {
-	r := httputil.NewRouter().StrictSlash(true)
+	r := httputil.NewRouter()
+	r.SkipClean(true)
+	r.StrictSlash(true)
 	r.Use(middleware.ValidateHost(func(host string) bool {
 		_, ok := p.routeConfigs[host]
 		return ok

proxy/proxy.go

@@ -247,6 +247,8 @@ func NewReverseProxy(to *url.URL) *httputil.ReverseProxy {
 // each route has a custom set of middleware applied to the reverse proxy
 func (p *Proxy) newReverseProxyHandler(rp http.Handler, route *config.Policy) (http.Handler, error) {
 	r := pom_httputil.NewRouter()
+	r.SkipClean(true)
+	r.StrictSlash(true)
 	r.Use(middleware.StripPomeriumCookie(p.cookieName))
 	// if signing key is set, add signer to middleware
 	if len(p.signingKey) != 0 {