starred/Proxyman
1
0
Fork 0
mirror of https://github.com/ProxymanApp/Proxyman.git synced 2026-04-26 16:45:57 +03:00
Code Issues 1.2k Projects Releases 5 Packages Wiki Activity

[GH-ISSUE #793] Wildcard domains not capturing as expected. #788

New issue
Open
opened 2026-03-03 19:21:54 +03:00 by kerem · 7 comments
kerem commented 2026-03-03 19:21:54 +03:00
Owner
Copy link

Originally created by @isadon on GitHub (Feb 19, 2021).
Original GitHub issue: https://github.com/ProxymanApp/Proxyman/issues/793

Originally assigned to: @NghiaTranUIT on GitHub.

Proxyman version? (Ex. Proxyman 1.4.3)

Proxyman Version 2.18.0 (21800)

macOS Version? (Ex. mac 10.14)

macOS 11.2.1 (20D74)

Steps to reproduce

  1. Add cloudfunctions.net Wildcard to SSL Proxy List - you will see that cloudfunctions.net* gets added....
  2. Add cloudfunctions.net Wildcard to Allow White List, make sure Include all Subpaths of this url is checked.
  3. Curl the following and notice Proxyman does not capture the result.:
curl "https://us-central1-test.cloudfunctions.net/sendLogTest"
  1. Remove the cloudfunctions.net* Wildcard entry from SSL Proxy List and add *.cloudfunctions.net*.
  2. Modify the cloudfunctions.net Wildcard entry from Allow List to be *.cloudfunctions.net*.
  3. Perform step 3 again and notice the request is now captured.

Expected behavior

Proxyman should capture the request when entering SSL Proxy List and Allow List Wildcard domain to be cloudfunctions.net result without having to add *.cloudfunction.net* as a Wildcard which will work. Entering that is pretty much entering a Regex, the user expects that cloudfunction.net for both SSL Proxy List and Allow white list should capture this scenario.

Originally created by @isadon on GitHub (Feb 19, 2021). Original GitHub issue: https://github.com/ProxymanApp/Proxyman/issues/793 Originally assigned to: @NghiaTranUIT on GitHub. ### Proxyman version? (Ex. Proxyman 1.4.3) Proxyman Version 2.18.0 (21800) ### macOS Version? (Ex. mac 10.14) macOS 11.2.1 (20D74) ### Steps to reproduce 1. Add `cloudfunctions.net` Wildcard to SSL Proxy List - you will see that `cloudfunctions.net*` gets added.... 2. Add `cloudfunctions.net` Wildcard to Allow White List, make sure `Include all Subpaths of this url` is checked. 3. Curl the following and notice Proxyman does not capture the result.: ``` curl "https://us-central1-test.cloudfunctions.net/sendLogTest" ``` 4. Remove the `cloudfunctions.net*` Wildcard entry from SSL Proxy List and add `*.cloudfunctions.net*`. 5. Modify the `cloudfunctions.net` Wildcard entry from Allow List to be `*.cloudfunctions.net*`. 6. Perform step 3 again and notice the request is now captured. ### Expected behavior Proxyman should capture the request when entering SSL Proxy List and Allow List Wildcard domain to be `cloudfunctions.net` result without having to add `*.cloudfunction.net*` as a Wildcard which will work. Entering that is pretty much entering a Regex, the user expects that `cloudfunction.net` for both SSL Proxy List and Allow white list should capture this scenario.
kerem commented 2026-03-03 19:21:55 +03:00
Author
Owner
Copy link

@NghiaTranUIT commented on GitHub (Feb 20, 2021):

@donileo I suppose that if we want to:

  • Match all sub-domain, we should use *.cloudfunction.net (One asterisk(*) and Include all subpath is checked)

the user expects that cloudfunction.net for both SSL Proxy List and Allow white list should capture this scenario.

I don't think that cloudfunction.net should match sub-domains too, because they're different.

Regarding *.cloudfunctions.net*

It might be a bug, I will check it out 👍

<!-- gh-comment-id:782581613 --> @NghiaTranUIT commented on GitHub (Feb 20, 2021): @donileo I suppose that if we want to: - Match all sub-domain, we should use `*.cloudfunction.net` (One asterisk(*) and Include all subpath is checked) > the user expects that cloudfunction.net for both SSL Proxy List and Allow white list should capture this scenario. I don't think that `cloudfunction.net` should match sub-domains too, because they're different. > Regarding `*.cloudfunctions.net*` It might be a bug, I will check it out 👍
kerem commented 2026-03-03 19:21:55 +03:00
Author
Owner
Copy link

@isadon commented on GitHub (Feb 20, 2021):

@NghiaTranUIT I actually forgot to mention above that using *.cloudfunctions.net for SSL Proxy List and Allow list also doesn't capture the curl request. It has to be *.cloudfunctions.net*.

When you add *.cloudfunctions.net to SSL Proxy List it automatically becomes *.cloudfunctions.net* which seems like a separate bug? Maybe not..

<!-- gh-comment-id:782714719 --> @isadon commented on GitHub (Feb 20, 2021): @NghiaTranUIT I actually forgot to mention above that using `*.cloudfunctions.net` for SSL Proxy List and Allow list also doesn't capture the curl request. It has to be `*.cloudfunctions.net*`. When you add `*.cloudfunctions.net` to SSL Proxy List it automatically becomes `*.cloudfunctions.net*` which seems like a separate bug? Maybe not..
kerem commented 2026-03-03 19:21:55 +03:00
Author
Owner
Copy link

@NghiaTranUIT commented on GitHub (Feb 21, 2021):

I actually forgot to mention above that using *.cloudfunctions.net for SSL Proxy List and Allow list also doesn't capture the curl request. It has to be .cloudfunctions.net.

It might be a bug. I'm investigating it and send you a beta build soon 👍

<!-- gh-comment-id:782784622 --> @NghiaTranUIT commented on GitHub (Feb 21, 2021): > I actually forgot to mention above that using *.cloudfunctions.net for SSL Proxy List and Allow list also doesn't capture the curl request. It has to be *.cloudfunctions.net*. It might be a bug. I'm investigating it and send you a beta build soon 👍
kerem commented 2026-03-03 19:21:55 +03:00
Author
Owner
Copy link

@NghiaTranUIT commented on GitHub (Mar 5, 2021):

Sorry for the delay, I'm so busy working on other tickets for the 2.19.0 release (https://github.com/ProxymanApp/Proxyman/milestone/102)

When you add *.cloudfunctions.net to SSL Proxy List it automatically becomes .cloudfunctions.net which seems like a separate bug? Maybe not.

It's not a bug. We intentionally add the * to the end to make sure all subpaths of this domain are matched. Many people forget the append the trailing *, so Proxyman could not enable SSL Proxying.

Solution => For the wildcard domain, I present the prefix to make it clear that it's a wildcard. For instance, Wildcard: *.cloudfunctions.net*

Regarding *.cloudfunctions.net and "Include all subpath" is ON that not match the curl

It's a bug. I'm working on it now 👍

<!-- gh-comment-id:791277945 --> @NghiaTranUIT commented on GitHub (Mar 5, 2021): Sorry for the delay, I'm so busy working on other tickets for the 2.19.0 release (https://github.com/ProxymanApp/Proxyman/milestone/102) > When you add *.cloudfunctions.net to SSL Proxy List it automatically becomes *.cloudfunctions.net* which seems like a separate bug? Maybe not. It's not a bug. We intentionally add the * to the end to make sure all subpaths of this domain are matched. Many people forget the append the trailing *, so Proxyman could not enable SSL Proxying. Solution => For the wildcard domain, I present the prefix to make it clear that it's a wildcard. For instance, Wildcard: `*.cloudfunctions.net*` > Regarding `*.cloudfunctions.net` and "Include all subpath" is ON that not match the curl It's a bug. I'm working on it now 👍
kerem commented 2026-03-03 19:21:55 +03:00
Author
Owner
Copy link

@NghiaTranUIT commented on GitHub (Mar 5, 2021):

Hey @donileo Let check out this Beta build: https://proxyman.s3.us-east-2.amazonaws.com/beta/Proxyman_2.18.0_Fix_Wildcard.dmg

From now, *.cloudfunctions.net* in SSL Proxying and *.cloudfunctions.net with "ON Include Subpath" on Whitelist will match your cURL.

Screen Shot 2021-03-05 at 16 37 05 Screen Shot 2021-03-05 at 16 37 18
<!-- gh-comment-id:791310226 --> @NghiaTranUIT commented on GitHub (Mar 5, 2021): Hey @donileo Let check out this Beta build: https://proxyman.s3.us-east-2.amazonaws.com/beta/Proxyman_2.18.0_Fix_Wildcard.dmg From now, `*.cloudfunctions.net*` in SSL Proxying and `*.cloudfunctions.net` with "ON Include Subpath" on Whitelist will match your cURL. <img width="866" alt="Screen Shot 2021-03-05 at 16 37 05" src="https://user-images.githubusercontent.com/5878421/110099112-85b90a00-7dd3-11eb-9357-adc8484215ca.png"> <img width="1593" alt="Screen Shot 2021-03-05 at 16 37 18" src="https://user-images.githubusercontent.com/5878421/110099131-8a7dbe00-7dd3-11eb-8fec-aa2e6848da29.png">
kerem commented 2026-03-03 19:21:56 +03:00
Author
Owner
Copy link

@isadon commented on GitHub (Mar 6, 2021):

Hi @NghiaTranUIT I have tested and believed the issue is now fixed. I am however seeing something new which is that when selecting to add the Wildcard To Allowlist and checking the Allow all Subpaths option back in SSL Proxy List a new entry gets added. I don't believe that’s normal as I should only see the items that I have added in SSL Proxy List. Below is a screenshot of what gets added.

The wildcard item in blue is what I initially had.. The item pointed to by the arrow gets added after adding the Wildcard to the Allow list.

Screen Shot 2021-03-06 at 11 07 56 AM
<!-- gh-comment-id:791980719 --> @isadon commented on GitHub (Mar 6, 2021): Hi @NghiaTranUIT I have tested and believed the issue is now fixed. I am however seeing something new which is that when selecting to add the Wildcard To Allowlist and checking the Allow all Subpaths option back in SSL Proxy List a new entry gets added. I don't believe that’s normal as I should only see the items that I have added in SSL Proxy List. Below is a screenshot of what gets added. The wildcard item in blue is what I initially had.. The item pointed to by the arrow gets added after adding the Wildcard to the Allow list. <img width="1172" alt="Screen Shot 2021-03-06 at 11 07 56 AM" src="https://user-images.githubusercontent.com/1881038/110213332-91f1a580-7e6d-11eb-805a-91008ab38d06.png">
kerem commented 2026-03-03 19:21:56 +03:00
Author
Owner
Copy link

@NghiaTranUIT commented on GitHub (Mar 7, 2021):

It's our decision to help people resolves their common mistakes:

Many Proxyman users didn't know that they have to enable SSL on a domain that they added to Block List / Allow List / Other tools. As a result, we've received a lot of questions about why the Block/Allow List doesn't work after adding a new rule.

The answer is quite simple. Just add a domain (in Block/Allow list) to SSL Proxying List or right-click on them -> Enable SSL Proxying.

To make it easier to use, we decide to automatically create a rule in SSL Proxying as soon as new rules are added in debugging tools.

From your case, it looks like a bug, because *.cloudfunction.net is a wildcard, but it appears as a domain. I will fix it 👍

<!-- gh-comment-id:792146378 --> @NghiaTranUIT commented on GitHub (Mar 7, 2021): It's our decision to help people resolves their common mistakes: Many Proxyman users didn't know that they have to enable SSL on a domain that they added to Block List / Allow List / Other tools. As a result, we've received a lot of questions about why the Block/Allow List doesn't work after adding a new rule. The answer is quite simple. Just add a domain (in Block/Allow list) to SSL Proxying List or right-click on them -> Enable SSL Proxying. To make it easier to use, we decide to automatically create a rule in SSL Proxying as soon as new rules are added in debugging tools. ------------------ From your case, it looks like a bug, because `*.cloudfunction.net` is a wildcard, but it appears as a domain. I will fix it 👍
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
master
6.9.0
6.8.0
6.7.0
6.6.0
6.5.0
6.4.0
6.3.0
6.2.0
6.1.0
6.0.2
6.0.0
6.0.1
5.25.0
5.24.0
5.23.0
5.23.1
5.22.0
5.20.0
5.21.0
5.19.0
5.18.0
5.17.0
5.16.0
5.15.0
5.14.0
5.12.2
5.12.1
5.12.0
5.11.0
5.10.0
5.8.0
5.9.0
5.7.0
5.6.1
5.6.0
5.5.0
5.4.0
5.2.0
5.3.0
5.1.1
5.0.0
4.16.0
4.15.0
4.14.0
4.13.0
4.12.0
4.11.0
4.10.0
4.9.1
4.9.0
4.8.2
4.8.1
4.8.0
4.7.1
4.7.0
4.6.1
4.6.0
4.5.0
4.4.0
4.3.1
4.3.0
4.2.1
4.2.0
4.1.0
4.0.0
3.15.0
3.14.0
3.13.0
3.12.0
3.11.0
3.10.0
3.9.0
3.8.0
3.7.0
3.6.2
3.6.1
3.6.0
3.5.2
3.5.1
3.5.0
3.4.0
3.3.0
3.2.0
3.1.0
3.0.0
2.35.4
2.35.3
2.35.2
2.35.1
2.35.0
2.34.1
2.34.0
2.33.0
2.32.1
2.32.0
2.31.0
2.30.0
2.29.0
2.28.0
2.27.0
2.26.0
2.25.0
2.24.0
2.23.0
2.22.0
2.21.1
2.21.0
2.20.0
2.19.0
2.18.0
2.17.0
2.16.1
2.16.0
2.15.2
2.15.1
2.15.0
2.14.2
2.14.1
2.14.0
2.13.0
2.12.0
2.11.1
2.11.0
2.10.0
2.9.1
2.9.0
2.8.0
2.7.0
2.6.0
2.5.3
2.5.2
2.5.1
2.5.0
2.4.2
2.4.1
2.4.0
2.3.0
2.2.0
2.1.1
2.1.0
2.0.1
2.0.0
1.24.0
1.23.0
1.22.0
1.21.0
1.20.0
1.19.0
1.18.1
1.18.0
1.17.1
1.17.0
1.16.0
1.15.0
1.14.1
1.14.0
1.13.1
1.13.0
1.12.0
1.11.0
1.10.0
1.9.3
1.9.2
1.9.1
1.9.0
1.8.0
1.7.2
1.7.1
1.7.0
1.6.2
1.6.1
1.6.0
1.5.1
1.5.0
1.4.7
1.4.6
1.4.5.1
1.4.5
1.4.4.1
1.4.4
1.4.3
1.4.2
1.4.1.1
1.4.1
1.4
1.3.9
1.3.8
1.3.7
1.3.6
1.3.5
1.3.4.3
1.3.4.2
1.3.4.1
1.3.4
1.3.3
1.3.2
1.3.1
1.3
1.2
1.1.2
1.1.1
1.1
1.0.3
1.0.2
1.0
0.8.1
0.8
0.7
0.6
0.5.1
0.5
v0.4.1
Labels
Clear labels   
Discussion

   
Feature request

   
In Progress...

   
Plugins

   
Waiting response

   
Windows

   
Windows

   
bug

   
duplicate

   
enhancement

   
feature

   
good first issue

   
iOS

   
macOS 10.11

   
question

   
wontfix

   
Done
No labels
Discussion
Feature request
In Progress...
Plugins
Waiting response
Windows
Windows
bug
duplicate
enhancement
feature
good first issue
iOS
macOS 10.11
question
wontfix
Done
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
starred/Proxyman#788
No description provided.