Draft: Add integrated OIDC redirection handler to standalone docker build (!770) · Merge requests · Exosphere / exosphere

Frank Tackitt requested to merge kageurufu/exosphere:standalone-oidc-redirect into master Feb 28, 2023

Overview

Using the nginx_http_js_module, nginx can directly handle POST requests removing the need for a separate OIDC redirection application. This includes a functioning example integrated into the standalone Docker deployment

Fixes #904 (closed)

How to Test

With Exosphere configured for OIDC as documented at https://gitlab.com/exosphere/exosphere/-/blob/master/docs/federated-login.md, instead of using the OIDC Redirector application use the nginx configuration found in https://gitlab.com/kageurufu/exosphere/-/tree/standalone-oidc-redirect/docker.

This adds a small module oidc.js, and a location = /oidc-redirector block to the standalone nginx config to handle these requests

Screenshots

No visual changes

$ curl -i http://app.exosphere.localhost:8000/oidc-redirector -H 'Content-Type: application/x-www-form-urlencoded' -d token=1234
HTTP/1.1 302 Moved Temporarily
Server: nginx/1.23.3
Date: Tue, 28 Feb 2023 20:22:01 GMT
Content-Type: text/html
Content-Length: 145
Location: http://app.exosphere.localhost:8000/auth/oidc-login?token=1234
Connection: keep-alive

Draft: Add integrated OIDC redirection handler to standalone docker build

Overview

How to Test

Screenshots

Merge request reports