--pass-authorization-header标志行为和oauth2proxy主干不一致 #1501

ningpengtao-coder · 2024-11-11T08:10:23Z

目前oauth2proxy--pass-authorization-header标志传递的是AccessToken，按照原oauth2proxy项目的含义应该是传递IDToken。
https://github.com/higress-group/oauth2-proxy/blob/v1.0.0/oauthproxy.go#L415

johnlanni · 2024-11-11T08:12:08Z

Jing-ze · 2024-11-11T08:25:25Z

应该修改为：

proxywasm.AddHttpRequestHeader("Authorization", fmt.Sprintf("%s %s", providers.TokenTypeBearer, session.IDToken))

Jing-ze · 2024-11-12T05:34:40Z

已在oauth2proxy仓库下提交pr：
higress-group/oauth2-proxy#4

johnlanni · 2024-11-12T05:36:08Z

@Jing-ze 已经合并，可以再更新下插件的go mod依赖

johnlanni assigned Jing-ze Nov 11, 2024

johnlanni added type/bug Something isn't working sig/wasm labels Nov 11, 2024

johnlanni added this to Higress Nov 11, 2024

github-project-automation bot moved this to Todo in Higress Nov 11, 2024

Jing-ze mentioned this issue Nov 12, 2024

fix: bug of pass authorization header higress-group/oauth2-proxy#4

Merged

4 tasks

Provide feedback