AWS ELB offloading, impossible link with Oauth Provider

repman-io / repman

Repman - PHP Repository Manager: packagist proxy and host for private packages

https://repman.io

MIT License

519 stars 107 forks source link

AWS ELB offloading, impossible link with Oauth Provider #678

Closed pascallap closed 6 months ago

pascallap commented 6 months ago

Request for behind AWS Elastic Load Balancer with SSL offloading are dropping the s in https protocol.

So during installation / setup of the first user. The url generated for the Oauth provider (bitbucket in our case) isn't a valid redirect_uri.

The TRUSTED_PROXIES environment variable is a good starting point. But without the TrustedHeader set to Request::HEADER_X_FORWARDED_AWS_ELB, it is impossible to get a proper uri.

pascallap commented 6 months ago

TRUSTED_PROXIES was enough.