tingyuz
commented
5 years ago will switch from hardcode to snis section of [secretservice] section in the configuration file. This will be addressed in Delhi dot release.
Closed anonymouse64 closed 5 years ago
tingyuz
commented
5 years ago will switch from hardcode to snis section of [secretservice] section in the configuration file. This will be addressed in Delhi dot release.
tingyuz
commented
5 years ago addressed in PR #47.
tingyuz
commented
5 years ago I will propose to remove host header as it is not gaining any benefit. Besides based on my testing on KONG 1.0.3 it seems there is a bug with combination of custom header and JWT/OAuth2 auth plugin.
tingyuz
commented
5 years ago close this issue per my comments above.
Currently, the
Hostheader is always set toedgex, which will fail if the user is attempting to create the OAuth token over HTTPS and uses a SNI/hostname setting other thanedgex, as the certificate validation will fail. This setting should be configurable.