cceslick

Checking if you have any thoughts on this @greenpau

I changed `cookie domain my.domain` to `cookie domain *.my.domain` and it started working. This allowed the cookies to work for host1.my.domain (https) and host2.my.domain (http) without the redirect loop. This...

Thanks for the speedy fix. How often are new releases added to https://caddyserver.com/download? I downloaded a fresh copy and it is still at 1.01. I can set up Docker if...

If I type in 1.0.5 manually it gives me a "build failed" error  .

The link worked. Build-info reports 1.0.5. It looks like you have to include the "v" (e.g. "v1.0.5") to get the specific version. Unfortunately, I am still getting the "token used...

As far as I can tell, the clocks between server and client are within ~100ms. When it works, I am able to go to /whoami. I've logged in and out...

Whoami shows that the "not_before_utc" time is one minute before the "issued_at_utc" which should be enough leeway. Maybe I wasn't paying attention and ran the old version? I'll keep checking...

``` { "addr": "", "authenticated": true, "exp": 1643065179, "expires_at_utc": "Mon Jan 24 15:59:39 MST 2022", "iat": 1643064279, "iss": "https://auth.my.domain/auth/oauth2/google/", "issued_at_utc": "Mon Jan 24 15:44:39 MST 2022", "jti": "", "mail": "[email protected]",...

When it occurs, authentication fails with "unauthorized." I'll see if there is anything that can be done to improve clock sync and continue to test.