From 26a9ad0e2e37cac3c475eb5ff9fbbc3357b2188e Mon Sep 17 00:00:00 2001
From: William Petit <wpetit@cadoles.com>
Date: Fri, 24 May 2024 15:28:21 +0200
Subject: [PATCH] feat(authn-oidc): match login callback/logout urls with query
 string by default

---
 internal/proxy/director/layer/authn/oidc/layer_options.go | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/internal/proxy/director/layer/authn/oidc/layer_options.go b/internal/proxy/director/layer/authn/oidc/layer_options.go
index 873975d..ce5b974 100644
--- a/internal/proxy/director/layer/authn/oidc/layer_options.go
+++ b/internal/proxy/director/layer/authn/oidc/layer_options.go
@@ -49,9 +49,9 @@ func fromStoreOptions(storeOptions store.LayerOptions, baseURL string) (*LayerOp
 		LayerOptions: authn.DefaultLayerOptions(),
 		OIDC: OIDCOptions{
 			LoginCallbackURL:      baseURL + loginCallbackPath,
-			MatchLoginCallbackURL: "*" + loginCallbackPath,
+			MatchLoginCallbackURL: "*" + loginCallbackPath + "*",
 			LogoutURL:             baseURL + logoutPath,
-			MatchLogoutURL:        "*" + logoutPath,
+			MatchLogoutURL:        "*" + logoutPath + "*",
 			Scopes:                []string{"openid"},
 		},
 		Cookie: CookieOptions{