feat(authn-oidc): use full urls for login callback/logout options
This commit is contained in:
@ -15,6 +15,12 @@ func NewDefaultLayersConfig() LayersConfig {
|
||||
},
|
||||
Authn: AuthnLayerConfig{
|
||||
TemplateDir: "./layers/authn/templates",
|
||||
OIDC: AuthnOIDCLayerConfig{
|
||||
HTTPClient: AuthnOIDCHTTPClientConfig{
|
||||
TransportConfig: NewDefaultTransportConfig(),
|
||||
Timeout: NewInterpolatedDuration(10 * time.Second),
|
||||
},
|
||||
},
|
||||
},
|
||||
}
|
||||
}
|
||||
@ -25,5 +31,15 @@ type QueueLayerConfig struct {
|
||||
}
|
||||
|
||||
type AuthnLayerConfig struct {
|
||||
TemplateDir InterpolatedString `yaml:"templateDir"`
|
||||
TemplateDir InterpolatedString `yaml:"templateDir"`
|
||||
OIDC AuthnOIDCLayerConfig `yaml:"oidc"`
|
||||
}
|
||||
|
||||
type AuthnOIDCLayerConfig struct {
|
||||
HTTPClient AuthnOIDCHTTPClientConfig `yaml:"httpClient"`
|
||||
}
|
||||
|
||||
type AuthnOIDCHTTPClientConfig struct {
|
||||
TransportConfig
|
||||
Timeout *InterpolatedDuration `yaml:"timeout"`
|
||||
}
|
||||
|
||||
@ -1,6 +1,10 @@
|
||||
package config
|
||||
|
||||
import "time"
|
||||
import (
|
||||
"crypto/tls"
|
||||
"net/http"
|
||||
"time"
|
||||
)
|
||||
|
||||
type ProxyServerConfig struct {
|
||||
HTTP HTTPConfig `yaml:"http"`
|
||||
@ -25,6 +29,33 @@ type TransportConfig struct {
|
||||
WriteBufferSize InterpolatedInt `yaml:"writeBufferSize"`
|
||||
ReadBufferSize InterpolatedInt `yaml:"readBufferSize"`
|
||||
MaxResponseHeaderBytes InterpolatedInt `yaml:"maxResponseHeaderBytes"`
|
||||
InsecureSkipVerify InterpolatedBool `yaml:"insecureSkipVerify"`
|
||||
}
|
||||
|
||||
func (c TransportConfig) AsTransport() *http.Transport {
|
||||
httpTransport := http.DefaultTransport.(*http.Transport).Clone()
|
||||
|
||||
httpTransport.Proxy = http.ProxyFromEnvironment
|
||||
httpTransport.ForceAttemptHTTP2 = bool(c.ForceAttemptHTTP2)
|
||||
httpTransport.MaxIdleConns = int(c.MaxIdleConns)
|
||||
httpTransport.MaxIdleConnsPerHost = int(c.MaxIdleConnsPerHost)
|
||||
httpTransport.MaxConnsPerHost = int(c.MaxConnsPerHost)
|
||||
httpTransport.IdleConnTimeout = time.Duration(*c.IdleConnTimeout)
|
||||
httpTransport.TLSHandshakeTimeout = time.Duration(*c.TLSHandshakeTimeout)
|
||||
httpTransport.ExpectContinueTimeout = time.Duration(*c.ExpectContinueTimeout)
|
||||
httpTransport.DisableKeepAlives = bool(c.DisableKeepAlives)
|
||||
httpTransport.DisableCompression = bool(c.DisableCompression)
|
||||
httpTransport.ResponseHeaderTimeout = time.Duration(*c.ResponseHeaderTimeout)
|
||||
httpTransport.WriteBufferSize = int(c.WriteBufferSize)
|
||||
httpTransport.ReadBufferSize = int(c.ReadBufferSize)
|
||||
httpTransport.MaxResponseHeaderBytes = int64(c.MaxResponseHeaderBytes)
|
||||
|
||||
if httpTransport.TLSClientConfig == nil {
|
||||
httpTransport.TLSClientConfig = &tls.Config{}
|
||||
}
|
||||
httpTransport.TLSClientConfig.InsecureSkipVerify = bool(c.InsecureSkipVerify)
|
||||
|
||||
return httpTransport
|
||||
}
|
||||
|
||||
func NewDefaultProxyServerConfig() ProxyServerConfig {
|
||||
@ -69,5 +100,6 @@ func NewDefaultTransportConfig() TransportConfig {
|
||||
ReadBufferSize: 4096,
|
||||
WriteBufferSize: 4096,
|
||||
MaxResponseHeaderBytes: 0,
|
||||
InsecureSkipVerify: false,
|
||||
}
|
||||
}
|
||||
|
||||
Reference in New Issue
Block a user