You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Solution:
The urljoin should add the well known part without a trailing slash to avoid stripping the issuer URL: urljoin(issuer, ".well-known/openid-configuration")
The text was updated successfully, but these errors were encountered:
When having an OpenID Connect issuer with a path (e.g.: https://your.authentik.example.org/application/o/your-app-slug/), the synapse token authenticator can not find the OpenIDProviderMetadata as
urljoin
strips away the path.Expected Behavior
get_oidp_metadata
respects the given path from the issuer URLCurrent Behavior
get_oidp_metadata
strips away the path from the URLPossible Solution
Current implementation:
synapse-token-authenticator/synapse_token_authenticator/utils.py
Line 21 in f4d339f
Solution:
The
urljoin
should add the well known part without a trailing slash to avoid stripping the issuer URL:urljoin(issuer, ".well-known/openid-configuration")
The text was updated successfully, but these errors were encountered: