You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
#4780
Check for validity of return_url query parameter at OIDC auth in /auth/login.
This change ensures that return_url is pointing to the URL given in the url (settings.URL) configuration, or to a path within that URL. For example, if url is https://localhost:4000/argocd, then the following values for return_url will be valid:
but i am getting only
Invalid redirect URL: the protocol and host (including port) must match and the path must be within allowed URLs if provided
In info log of oidc i am getting only
time="2024-11-19T13:41:29Z" level=info msg="OIDC supported scopes: [openid profile email phone address groups]"
after that above invalid redirect URL
reacted with thumbs up emoji reacted with thumbs down emoji reacted with laugh emoji reacted with hooray emoji reacted with confused emoji reacted with heart emoji reacted with rocket emoji reacted with eyes emoji
-
#4780
Check for validity of return_url query parameter at OIDC auth in /auth/login.
This change ensures that return_url is pointing to the URL given in the url (settings.URL) configuration, or to a path within that URL. For example, if url is https://localhost:4000/argocd, then the following values for return_url will be valid:
https://localhost:4000/argocd
https://localhost:4000/argocd/applications
while the following URLs will not be considered valid and HTTP request is canceled:
https://localhost:4000/applications
https://localhost:4000/argocd/../some/other/app
https://www.google.com
I tried below redirectURI in my OIDC app config on my IDP
https://mydomain/argocd
https://mydomain/argocd/application
but i am getting only
Invalid redirect URL: the protocol and host (including port) must match and the path must be within allowed URLs if provided
In info log of oidc i am getting only
time="2024-11-19T13:41:29Z" level=info msg="OIDC supported scopes: [openid profile email phone address groups]"
after that above invalid redirect URL
can somebody help?
Beta Was this translation helpful? Give feedback.
All reactions