Skip to content

Fix OIDC session params definition#6730

Merged
Alkarex merged 3 commits intoFreshRSS:edgefrom
pando85:fix/oidc-configuration-params
Aug 25, 2024
Merged

Fix OIDC session params definition#6730
Alkarex merged 3 commits intoFreshRSS:edgefrom
pando85:fix/oidc-configuration-params

Conversation

@pando85
Copy link
Contributor

@pando85 pando85 commented Aug 23, 2024
edited
Loading

Closes #6378

Changes proposed in this pull request:

  • standardize environment variable names
  • group all in the same configuration file
  • use mod_auth_openidc default values
  • add documentation

How to test the feature manually:

  1. I tested in my cluster with my IDM configuration but apache2 configuration and changes can be easily revised.

Pull request checklist:

  • [ x] clear commit messages
  • [ x] code manually tested
  • unit tests written (optional if too hard)
  • [ x] documentation updated

Additional information can be found in the documentation.

@pando85
Fix OIDC session params definition
d8e90e0 
- standardize environment variable names
- group all in the same configuration file
- use mod_auth_openidc default values
- fix `OIDCSessionMaxDuration` because it was not set with the previous
  code
- add documentation
@Alkarex Alkarex added Security 🛡️ Docker 🐋 Everything related to Docker labels Aug 24, 2024
@Alkarex Alkarex added this to the 1.25.0 milestone Aug 24, 2024
@pando85
Copy link
Contributor Author

pando85 commented Aug 24, 2024

I fixed the sanity checks in bash.

Alkarex
Alkarex reviewed Aug 24, 2024
View reviewed changes
Docker/FreshRSS.Apache.conf
OIDCXForwardedHeaders ${OIDC_X_FORWARDED_HEADERS}
</IfDefine>

# Can be overridden e.g. in /var/www/FreshRSS/p/i/.htaccess
Copy link
Member

@Alkarex Alkarex Aug 24, 2024

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Out of curiosity: isn't it working?

Copy link
Contributor Author

@pando85 pando85 Aug 25, 2024

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Ouch, nice caught! I don't know what I did sorry. Fixed in 4f697d3

Copy link
Member

@Alkarex Alkarex Aug 25, 2024

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

If you have a chance to test that it actually works, that would be nice. I do not have an OIDC setup at the moment, to experiment

@Alkarex Alkarex mentioned this pull request Aug 24, 2024
Merged
4 tasks
@Alkarex Alkarex merged commit 82593f5 into FreshRSS:edge Aug 25, 2024
Alkarex added a commit that referenced this pull request Aug 26, 2024
@Alkarex
OIDC changelog + minor whitespace
8ca7004 
+fix minor whitespace from #6730
@Alkarex Alkarex modified the milestones: 1.25.0, 1.24.3 Aug 26, 2024
pando85 added a commit to pando85/homelab that referenced this pull request Sep 10, 2024
@pando85
freshrss: Delete configmap after included in freshrss 1.24.3
26c607a 
FreshRSS/FreshRSS#6730
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@Alkarex Alkarex Alkarex approved these changes

Assignees

No one assigned

Labels

Docker 🐋 Everything related to Docker Security 🛡️

Projects

None yet

Milestone

1.24.3

Development

Successfully merging this pull request may close these issues.

OIDC / oAuth expiry variable to prevent logging in every day

2 participants

@pando85 @Alkarex