New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
authenticate: handlers return a 404 not found if the route contains a port #104
Comments
Hi @haozhou , Sorry this isn't working as expected.
|
export ADDRESS=":8443" No, it's not behind another load balancer. Just a VM behind the router. |
Also the callback URL in google API console has :8443 port specified in the URL |
When you start the server, what is the debug message? 5:13PM DBG add email group=bdd@pomerium.io route=weirdlyssl.corp.beyondperimeter.com My hunch is that it has to do with you having a port set on your proxied domain. (But we should support that). |
Okay. I've been able to reproduce the issue. This isn't' actually related to the proxy service but because the auth service handler isn't stripping the port and thus isn't handling the authenticate service handlers properly. if authenticateService != nil {
topMux.Handle(authHost+"/", authenticateService.Handler())
} See: |
If I access any URL defined in policy.yml, it redirects me to AUTHENTICATE_SERVICE_URL but then it shows Unknown route HTTP 404.
Here's the console log. I mask secrets and sig.
3:16PM DBG proxy: request duration=0.286107 ip=1xx.xx.xx.xx method=GET pomerium-email= pomerium-user= req_id=d5536f4e-1ad7-92ce-d877-55517010960e size=1935 status=404 url=/sign_in?redirect_uri=https%3A%2F%2Fbugtik.lab.henryzhou.com%3A8443%2F.pomerium%2Fcallback&response_type=code&shared_secret=somesecrets&sig=somesig&ts=1556921814 user_agent="Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/73.0.3683.103 Safari/537.36"
I'm feeling that "sign_in" is not properly handled by the process.
The text was updated successfully, but these errors were encountered: