OIDC redirect not working on non-public backend #977
Labels
No Label
dependencies
duplicate
help wanted
invalid
kind/bug
kind/feature
needs reproduction
question
security
wontfix
No Milestone
No Assignees
2 Participants
Notifications
Due Date
No due date set.
Dependencies
No dependencies set.
Reference: vikunja/vikunja#977
Loading…
Reference in New Issue
No description provided.
Delete Branch "%!s(<nil>)"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
I have the following setup:
When I access the frontend on for example cellular, where I cannot resolve backend.internal.example.com, there is no redirection happening to login with Keycloak.
When I access the frontend from home, it does redirect to Keycloak.
I've enabled CORS for all the URL's above.
Am I doing anything wrong?
Relevant sections config.yml:
I'm wondering, how do you plan to use the api at all from the outside? All requests the frontend makes to the api happen in your browser, that means if your device cannot access the api it won't work at all - not only authentication.
Thanks for the fast response!
To be honest, I had not tried that, as I couldn't login with Keycloak.
So the api has to be publicly available for the frontend to work at all?
I just put it on a private URL as I thought that would be a little more secure, to not open up the API to the outside world, and the frontend can reach that internal backend URL anyways. I didn't realize all requests go via the browser.
Yes, the frontend is running completely in your browser and directly talking to the api in the browser. In theory, you can use the api with other frontends (no other ones exist yet) or with only the desktop app and not a hosted frontend.
Closing as this seems to be a hosting issue, feel free to reopen if that's not the case.