The redirect after revoking permissions seems not use public origin. #2473

oclaude · 2016-01-25T10:07:17Z

Hello,

In my environment, I'm in https until the load balancer, after it all traffic is http.
In the identiy server options, I have configured the public origin to https://...

All works fine except when I try to revoking a permission.
The action is correctly executed but the redirect fails because I'm redirected over http without using my public origin.

A workaround is to rewrite location header in the reverse proxy.

Thank you for this fix.

brockallen · 2016-01-25T18:06:14Z

Yep, confirmed as a bug. Fixed in 2.4

brockallen self-assigned this Jan 25, 2016

brockallen added this to the 2.4 milestone Jan 25, 2016

brockallen added the bug fix label Jan 25, 2016

brockallen closed this as completed Jan 25, 2016

brockallen added a commit that referenced this issue Jan 25, 2016

use public origin for redirect back to permissions page #2473

854a45d

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

The redirect after revoking permissions seems not use public origin. #2473

The redirect after revoking permissions seems not use public origin. #2473

oclaude commented Jan 25, 2016

brockallen commented Jan 25, 2016

The redirect after revoking permissions seems not use public origin. #2473

The redirect after revoking permissions seems not use public origin. #2473

Comments

oclaude commented Jan 25, 2016

brockallen commented Jan 25, 2016