Open daoxxx opened 1 month ago
This is not a bug. Just a lack of documentation. Custom transport's settings in tomcat are the same as for other http and https transports.
Just add "proxyPort" property in the custom_transport section:
[custom_transport.x509.properties]
port="8443"
proxyPort = 443
Port configuration of x509 Authenticator transport overrides IS port in all redirect URLs and doesn't honor https' transport proxyPort.
How to reproduce: Configure deployment.toml according to the docs
In the log file we see:
All URLs returned by IS now point to this 8443 port instead of 443 proxyPort settings. https://mydomain:8443/commonauth If port 8443 is open on the firewall Authentication works though But such behavior makes proxyPort setting almost useless and complicates configuration of IS behind restrictive firewall.
Expected behavior: All URLs should use https transport proxyPort (443) setting instead of custom x509 transport's one (8443) : https://server:443/myaccount https://mydomain:443/commonauth https://mydomain:443/authenticationendpoint/login.do and so on
Environment information (Please complete the following information; remove any unnecessary fields) :
OS: Linux