Ignore HTTP_PROXY in reverse tunnels, part 2

[atburke]

This PR disables HTTP_PROXY in a few places that were missed in #11990.

[r0mant]

Let's please also add test coverage to make sure it does not regress again.

[atburke]

@r0mant Can you take another look at this?

[r0mant]

@atburke The code lgtm in general but I'm having a bit of a hard time understanding in which cases we'll be respecting vs not respecting proxies with these changes. Mostly because these clients are used throughout the code.

Before we merge this, could you please help me clarify my understanding regarding the following:

• In which scenarios the proxy will be respected? When using tsh only?
• In which scenarios the proxy will not be respected? For inter-process communication?
• In which scenarios the proxy was respected prior to your original HTTP_PROXY changes? Never?

[r0mant]

I'm probably missing something, but I'm still not sure why we need to ignore it in the authclient too. Isn't lib/reversetunnel/resolver enough?

[atburke]

It isn't enough. authclient was also affected by the original HTTP_PROXY change. TestMultiPortNoProxy doesn't pass unless authclient ignores proxies.

[atburke]

Previously, HTTP_PROXY was only supported (as far as I can tell) for inter-process communication in single-port mode. My original HTTP_PROXY PR added support deliberately for tsh and accidentally for IPC in multi-port mode. This PR removes support for IPC in multi-port mode. The end result should be that HTTP_PROXY is supported for tsh and ALPN mode, and not in single-port mode.

[nklaassen]

Looks alright to me.

Do we have any docs on when exactly this env variable applies? I'm somewhat confused, I imagine it could be pretty confusing for users

[atburke]

We have a docs page for http proxy. I'll update it with the current behavior in a new PR.