search

NASA-IMPACT / veda-auth-central

Standard based security solution tailored for VEDA comprehensive user authentication, centralized user profile management, and intelligent authorization decisions.
Apache License 2.0
3 stars 7 forks source link

Bug: 500 responses from OpenID Configuration endpoint #108

Closed alukach closed 1 week ago

alukach commented 1 week ago

Unable to access https://api.veda.usecustos.org/api/v1/identity-management/.well-known/openid-configuration?client_id=veda-iui65nmkgaf7bihdyndc-10000000.

▶ curl 'https://api.veda.usecustos.org/api/v1/identity-management/.well-known/openid-configuration?client_id=veda-iui65nmkgaf7bihdyndc-10000000' --verbose
*   Trying 3.12.105.139:443...
* Connected to api.veda.usecustos.org (3.12.105.139) port 443 (#0)
* ALPN: offers h2,http/1.1
* (304) (OUT), TLS handshake, Client hello (1):
*  CAfile: /etc/ssl/cert.pem
*  CApath: none
* (304) (IN), TLS handshake, Server hello (2):
* (304) (IN), TLS handshake, Unknown (8):
* (304) (IN), TLS handshake, Certificate (11):
* (304) (IN), TLS handshake, CERT verify (15):
* (304) (IN), TLS handshake, Finished (20):
* (304) (OUT), TLS handshake, Finished (20):
* SSL connection using TLSv1.3 / AEAD-AES128-GCM-SHA256
* ALPN: server accepted h2
* Server certificate:
*  subject: CN=api.veda.usecustos.org
*  start date: Jul  3 00:00:00 2024 GMT
*  expire date: Aug  2 23:59:59 2025 GMT
*  subjectAltName: host "api.veda.usecustos.org" matched cert's "api.veda.usecustos.org"
*  issuer: C=US; O=Amazon; CN=Amazon RSA 2048 M03
*  SSL certificate verify ok.
* using HTTP/2
* h2 [:method: GET]
* h2 [:scheme: https]
* h2 [:authority: api.veda.usecustos.org]
* h2 [:path: /api/v1/identity-management/.well-known/openid-configuration?client_id=veda-iui65nmkgaf7bihdyndc-10000000]
* h2 [user-agent: curl/8.1.2]
* h2 [accept: */*]
* Using Stream ID: 1 (easy handle 0x12100d400)
> GET /api/v1/identity-management/.well-known/openid-configuration?client_id=veda-iui65nmkgaf7bihdyndc-10000000 HTTP/2
> Host: api.veda.usecustos.org
> User-Agent: curl/8.1.2
> Accept: */*
>
< HTTP/2 500
< date: Wed, 04 Sep 2024 22:04:07 GMT
< content-type: text/plain;charset=UTF-8
< content-length: 109
< vary: Origin
< vary: Access-Control-Request-Method
< vary: Access-Control-Request-Headers
<
* Connection #0 to host api.veda.usecustos.org left intact
Exception occurred while retrieving OIDC configuration Error while extracting the credentials for Owner Id: 0%
lahirujayathilake commented 1 week ago

This has been fixed and the new OIDC endpoint is - https://api.veda.usecustos.org/swagger-ui/index.html#/Identity%20Management/getOIDCConfiguration