react-oidc-context does not permit the http scheme
#899
Assignees
Comments
|
Worth noting: Having OAuth on http kind of breaks the purpose of having authentication in the first place, as network requests aren't encrypted anymore. The most likely use case for this would be when you're setting up a DTaaS server and you haven't enabled TLS for your domain yet. Perhaps we could offer a setup option for the server to use |
|
The PR #905 adds support for https://foo.com/gitlab. Let us have a similar setup for https://localhost/gitlab and close the issue. |
|
The problem is beyond the purview of this project. An explanation has been added in PR #961 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
As of now, DTaaS uses
https://gitlab.comas an OAuth provider, which works with no problems.With the ongoing effort to switch to an integrated GitLab instance (#892), if a DTaaS server is set up at
http://site.com(note: http and not https) the local gitlab instance would be available athttp://site.com/gitlab. However, the homepage "sign in with GitLab" button redirects tohttps://site.com/gitlabbecause of a known issue withoidc-client-tsthat automatically useshttps.This might even break development servers at
http://localhostfor the same reason - I'll try it out and post it here.The text was updated successfully, but these errors were encountered: