Test OIDC-OP login fails due to haproxy CSP headers

SURFscz / SRAM-deploy

Deploy scripts for the SCZ

Apache License 2.0

5 stars 5 forks source link

Test OIDC-OP login fails due to haproxy CSP headers #467

Closed mrvanes closed 8 months ago

mrvanes commented 1 year ago

Local deploy oidc-op VM test login (form POST) fails due to haproxy injected CSP headers:

Refused to send form data to 'https://oidc-op.scz-vm.net/verify/user' because it violates the following Content Security Policy directive: "form-action 'self' https://*.scz-vm.net".

mrvanes commented 8 months ago

Works For Me, on containerized version of SBS, but that shouldn't be any different from the normal deploy since this is configured in haproxy.