Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

How to exclude a subdomain from auth? #354

Open
JostBrand opened this issue Jul 19, 2024 · 0 comments
Open

How to exclude a subdomain from auth? #354

JostBrand opened this issue Jul 19, 2024 · 0 comments
Assignees
@greenpau
Labels
need triage question Further information is requested

Comments

@JostBrand
Copy link

I have setup the portal with a local identity store for a couple of subdomains, but I want to exclude some of them from authentication.

I tried creating a policy with an ACL rule:

authorization policy guest_policy{
acl default allow
}

sub.domain {
        authorize with guest_policy
        reverse_proxy  http://localhost:2159
}

But this results in log messages like this
{"level":"error","ts":1721422897.239201,"logger":"http.handlers.authentication","msg":"auth provider returned error","provider":"authorizer","error":"user authorization failed: src_ip=172.20.0.1, src_conn_ip=172.20.0.1, reason: no token found"}

When accessing the domain https://sub.domain it gets replaced to https://sub.domain/auth?redirect_url=https%3A%2F%2Fsub.domain%2F and I end up with a blank page.
@JostBrand JostBrand added need triage question Further information is requested labels Jul 19, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@greenpau greenpau

Labels
need triage question Further information is requested
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@greenpau @JostBrand