Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[v3.0.0-next.2] Post Logout Redirect URI proto set incorrectly when behind TLS-terminating reverse proxy #285

Open
heikkilamarko opened this issue Jan 8, 2024 · 1 comment
Open

[v3.0.0-next.2] Post Logout Redirect URI proto set incorrectly when behind TLS-terminating reverse proxy #285

heikkilamarko opened this issue Jan 8, 2024 · 1 comment

Comments

@heikkilamarko
Copy link

I've encountered an issue with the post logout redirect URI protocol being set incorrectly when my API is behind a TLS-terminating reverse proxy. Despite configuring the post logout redirect URL with the "https://" protocol, the SDK implementation sets the protocol to "http." This is likely due to the reverse proxy terminating TLS and calling the service without TLS.

zitadel-go/pkg/authentication/authenticate.go

Lines 131 to 133 in aad6fea

proto := "http"
if req.TLS != nil {
proto = "https"

Screenshot 2024-01-08 at 10 43 37
@hifabienne
Copy link
Member

@livio-a can you help here?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@heikkilamarko @hifabienne