workspaces-issues icon indicating copy to clipboard operation
workspaces-issues copied to clipboard

Published 20 hours ago verified publisher icon kasmtech

[Bug] - OIDC Callback Redirect Missing Port 8443 Causing Authentication Failure

Open tommyfgj opened this issue 1 year ago • 2 comments

I am unable to open port 443 on my server due to security policies, so I am using port 8443 instead. I have integrated Azure Entra ID for OIDC authentication. After a successful callback from Azure to https://host:8443/api/oidc_callback, it redirects to https://host/#/sso/xxxxxx. However, the port 8443 is not included in the redirect URL, causing the redirection to fail. Manually adding port 8443 allows the authentication to succeed. Please see the attached image for reference:

image

OpenID configuration: image image

tommyfgj avatar May 23 '24 06:05 tommyfgj

Thank you for reporting.

j-travis avatar May 30 '24 02:05 j-travis

Same problem for me, version 1.16.1. I've used the Nginx proxy_redirect directive to temporarily fix the issue by rewriting the redirect URLs to point to the reverse proxy's port.

location / {
    ...
    # Proxy to Kasm Workspaces running locally on 8443 using ssl
    proxy_pass https://x.x.x.x:8443;
    proxy_redirect https://$host/ https://$host:$server_port/;
}

zzzz0317 avatar Jan 28 '25 08:01 zzzz0317