Comments (4)
ploxiln
commented on June 6, 2024
1
http vs https is selected for automatic redirect-url based on the cookie-secure option, so if you enable cookie-secure you should get https
https://github.com/pusher/oauth2_proxy/blob/v3.1.0/oauthproxy.go#L256-L257
from oauth2-proxy.
agusl88
commented on June 6, 2024
Enabling the flag --cookie-secure worked, but it requires users to have 3th-party cookies enabled in the browser, otherwise they get an error. There is no way to enable HTTPS on the redirect url without having to set cookie-secure set to true?
from oauth2-proxy.
ploxiln
commented on June 6, 2024
Enabling the flag
--cookie-secureworked, but it requires users to have 3th-party cookies enabled
I find this to be a surprising requirement.
There is no way to enable HTTPS on the redirect url without having to set cookie-secure set to true?
Besides a single hard-coded redirect url, no, sorry ... fastest way at this point would be to edit the code and re-build. Or maybe some nginx rules could rewrite the location header.
from oauth2-proxy.
agusl88
commented on June 6, 2024
I may have jumped into conclusions too quickly. There was something on my firefox installation causing problems, but seems like it's not related to 3th party cookies, i couldn't reproduce the problem with chrome and 3th party cookies disabled.
After clearing cache and cookies in firefox it started to work just fine. Thanks for the help @ploxiln ! i'm closing the issue.
from oauth2-proxy.
Related Issues (20)
- [Support]: Cannot get user information in upstream headers HOT 1
- [Bug]: Redirect deadlock on calling upstream path with query string HOT 2
- pass azure AD id_token to the frontend HOT 1
- [Bug]: websocket requestis is responsed with 301 if url contains double slash
- [Feature]: When combining /auth filter parameters make it possible to allow user if any of them matches HOT 1
- [Support]: Istio not receiving Auth headers from oauth2-proxy when running Alpha config
- [Support]: CSRF Token Expiration Issue with Keycloak and OAuth2 Proxy HOT 5
- [Support]: Question: Is there a flexible way to configure AuthZ with OAuth2-Proxy in Kubernetes with annotations & Keycloack User Attributes? HOT 1
- cookied session Oauth-proxy not found
- [Bug]: Authorization: Bearer always set, even if --pass-authorization-header is false
- [Support]: got 404 not found error when fetching keys oidc HOT 2
- [Bug]: ajax requests still sometimes get redirected HOT 2
- [Support]: Support for reloading server certificates? HOT 3
- [Support]: Unable to authorize applications with keycloak via oauth2 proxy using Bearer token HOT 2
- [Bug]: Cannot get oauth2-proxy working with Caddy HOT 4
- [Support]: Redirect loop after successful authentication HOT 2
- [Feature]: allow "user" claim to be customized HOT 2
- How to configure Oauth2 with Azure: azure or oidc, and errors.
- [Support]: Use Kubernetes Service as Upstream HOT 4
- [Bug]: oidc_extra_audience in oauth2-proxy.cfg HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from oauth2-proxy.