search

mozilla-iam / mozilla.oidc.accessproxy

Stand-alone OIDC Access Proxy
Mozilla Public License 2.0
11 stars 10 forks source link

mozilla.oidc.accessproxy is upstream proxy unaware #8

Closed claudijd closed 6 years ago

claudijd commented 6 years ago

I ran into this when trying to setup a non-dockerized implementation of this in a mozilla data center with an upstream proxy requirement.

I ended up adding the following to the server.lua to make this work, maybe in the example case we include it to show it, but commented, indicating it might be required in an upstream proxy requirement?

opts = {
  ...SNIP... 
  proxy_opts = {
    http_proxy  = "http://insert_proxy_hostname:3128",
    https_proxy = "http://insert_proxy_hostname:3128"
  }
}
claudijd commented 6 years ago

Lacking this in my case results in the following error...

2018/02/26 16:01:20 [error] 32485#32485: *6 [lua] openidc.lua:452: openidc_discover(): accessing discovery url (https://auth.mozilla.auth0.com/.well-known/openid-configuration) failed: timeout, client: REDACTED, server: REDACTED, request: "GET / HTTP/1.1", host: "REDACTED"