Uploaded image for project: 'Identity Gateway'
  1. Identity Gateway
  2. OPENIG-368

OAuth2ClientFilter rebases client endpoint against possibly rebased request.uri

    XMLWordPrintable

Details

    • Bug
    • Status: Closed
    • Major
    • Resolution: Fixed
    • 3.0.0
    • 3.1.0
    • OAuth 2.0
    • 3.1 - QA sprint / bug fixing

    Description

      Routes and dispatch handlers will often rebase the request URI in order to forward a request to the correct backend service provider. However, the OAuth2ClientFilter will attempt to construct a redirect URI using the request URI which will be incorrect w.r.t. the URI registered with the IDP if the URI has been rebased.

      Workaround: the client endpoint in the OAuth2ClientFilter can be specified as an absolute URI. However, this mean that the config contains a hard wired host/port.

      Suggested fix: provide access to the original immutable URI and rebase the client endpoint against that. E.g. we could have a field like "exchange.originalUri".

      Attachments

        Issue Links

          Activity

            People

              guillaume.sauthier Guillaume Sauthier
              matthew Matthew Swift
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: