New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
OIDC Resolving JWK set failed #2696
Comments
Looks like retrieval of JWKs may still not use the configured proxy. Please try additionally setting the proxy on the JVM level and see if that works. For the container image, you can use the dependency-track/src/main/docker/Dockerfile Lines 20 to 21 in 665c4bc
For example:
|
I have added the env variable in the container definition
|
Fixes an oversight of stevespringett#466 Relates to DependencyTrack/dependency-track#2696 Signed-off-by: nscuro <nscuro@protonmail.com>
A fix for the underlying issue has been raised in stevespringett/Alpine#490 This will likely be shipped with a 4.8.1 bugfix release soon. |
We are looking to upgrade to 4.8, but holding back because of this issue. Does this issue only relate to when the proxy has been set? |
@mieliespoor Yes, this issue will only affect you if the communication between the DT API server and the OIDC IdP must go through a proxy. |
It might not help, but the correct name of the env variable is |
Thank you - I edited the ENV vars to reflect that difference. It got me further than before. The error is now this but with our actual proxy url. |
So:
|
@nscuro thank you. I appreciate how much help you've given. |
This was fixed in stevespringett/Alpine#490 and will be shipped with 4.8.1. |
This thread has been automatically locked since there has not been any recent activity after it was closed. Please open a new issue for related bugs. |
Current Behavior
dual ECS container v4.8.0 deployment
(Thanks for adding proxy support, I at least now can get TO Okta)
On login screen, click the OIDC button. Was redirected to Okta, Authenticate with Okta, Returned to login screen for DependencyTrack.
On further attempts once authenticated through Okta, it just takes straight back to login screen.
In Okta, it shows the token is granted
Logging in as admin to dtrack shows no user provisioned etc.
DependencyTrack Logs show:
I did verify the jwk_uri exists and is accessible ending in /v1/keys
Steps to Reproduce
Front End has env vars
API Server has env vars
Expected Behavior
I would expect to get into the Dashboard.
Dependency-Track Version
4.8.0
Dependency-Track Distribution
Container Image
Database Server
PostgreSQL
Database Server Version
15.2
Browser
Google Chrome
Checklist
The text was updated successfully, but these errors were encountered: