search

GFlisch / Arc4u

Apache License 2.0
23 stars 18 forks source link

((Guidance2022.1.2.13) wrong endpoint in CSP configuration for Elia. #77

Closed vvdb-architecture closed 1 year ago

vvdb-architecture commented 1 year ago

When generating an application, the SecurityHeaderCSP.cs contains:

.From(configuration.GetValue<String>("Authentication:DefaultAuthority:Url") + "/oauth2/v2.0/authorize")

This is wrong for internal ADFS2019. It should be:

.From(configuration.GetValue<String>("Authentication:DefaultAuthority:Url") + "/oauth2/authorize/")
GFlisch commented 1 year ago

Fixed. Next version will taken into account the sts => other are using v2.0 endpoints.