Comments (11)
kwent
commented on July 17, 2024
3
Not stale. Still waiting for an answer :)
from omniauth_openid_connect.
danjay
commented on July 17, 2024
2
Your redirect uri needs to be /auth/name_of_provider/callback
So #{ENV['BASE_URL']}/auth/sign_in_slack/callback
from omniauth_openid_connect.
kwent
commented on July 17, 2024
1
Don't have capacity to try this again right now but i'll let you know when i do
from omniauth_openid_connect.
stale
commented on July 17, 2024
This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions.
from omniauth_openid_connect.
formigarafa
commented on July 17, 2024
I am not sure but, try removing the redirect_uri param and let the gem generate one automatically .
maybe the endpoint that should trigger the callback_phase is not being called because of that.
from omniauth_openid_connect.
formigarafa
commented on July 17, 2024
@kwent did this resolve your problem?
from omniauth_openid_connect.
kwent
commented on July 17, 2024
Is this a requirement ? We have this in our routes.rb so shouldn't matter
get "/auth/slack/callback/sign_in" => "omniauth_callbacks#sign_in_slack"from omniauth_openid_connect.
dgmstuart
commented on July 17, 2024
I had the same issue and apparently it is a requirement:
When I had my redirect URL set to just /auth/slack/callback, I also got request.env['omniauth.auth'] nil.
But changing it to /auth/slack/callback (where name: :slack in the OmniAuth::Builder config) I get a CSRF error from the callback phase (which is at least progress).
from omniauth_openid_connect.
dgmstuart
commented on July 17, 2024
(Ok for reference, my CSRF issue was dumb: I have ngrok pointing at localhost:3000, but I was starting the authorization from localhost:3000, so the "omniauth.state" cookie (which is used for CSRF protection) was set on localhost and so wasn't available in the callback phase, since that used the ngrok url)
from omniauth_openid_connect.
dgmstuart
commented on July 17, 2024
I am not sure but, try removing the redirect_uri param and let the gem generate one automatically
This didn't work for me: this gem doesn't seem to try to construct a redirect_uri? I had a look at the dependent gems as well and they don't seem to either.
Here's the result from Slack of passing it as nil:
from omniauth_openid_connect.
indirect
commented on July 17, 2024
I eventually got this working by overwriting the redirect_url method to match what Slack wanted: https://github.com/sunchaserio/omniauth-sign-in-with-slack/blob/main/lib/omniauth/strategies/slack.rb
from omniauth_openid_connect.
Related Issues (20)
- Allow relaxing state check for IdP initiated SSO HOT 6
- Automatically set (and send?) redirect_uri HOT 2
- Dynamically Set ACR Values HOT 3
- OneLogin OIDC post_logout_redirect_uri issue HOT 3
- OpenID-provider without `userinfo_endpoint`
- Uninitialized constant json::jws::unknownalgorithm HOT 1
- Pitfalls setting up OIDC with ADFS HOT 2
- Why should the logout path be relative to request_path
- Possible bug when upgrading to 0.7.0 and openid_connect to 2.2.0 HOT 2
- When using jwks_uri, default value fails becuase it's not a URI
- OmniAuth::Strategies::OpenIDConnect::CallbackError, csrf_detected | Invalid 'state' parameter HOT 3
- Authentication failure! no implicit conversion of Hash into String (version 0.6.1) HOT 3
- Migration guide from gitlab-omniauth-openid-connect to this gem? HOT 4
- Problem using microsoft oauth2 as provider because of dynamic issuer HOT 22
- Dynamic client_options.redirect_uri value HOT 3
- Could not authenticate you from [My Provider name] because "Unknown" HOT 3
- Actioncontroller::InvalidAuthenticityToken with omniauth_openid_connect and omniauth-rails_csrf_protection HOT 1
- How not to send the `state` parameter? HOT 21
- Getting a routing error after initialization HOT 3
- Back-channel Single Sign Out Support
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from omniauth_openid_connect.