Michiel de Jong

First one: https://test.server.com/.well-known/openid-configuration redirects to https://test.server.com/apps/solid/openid with a 302 and https://www.npmjs.com/package/openid-client doesn't like that. It wants a 200 response directly.

According to the openid spec Redirects are allowed in the webfinger part of discovering someone's issuer: https://openid.net/specs/openid-connect-discovery-1_0.html#IssuerDiscovery but we're not allowed to do a redirect in the provider configuration response:...

The 302 is coming from https://github.com/pdsinterop/solid-nextcloud/blob/531f6c4/init-live.sh#L6

If I change ```diff -sed -i '96 i\ RewriteRule ^\\.well-known/openid-configuration /apps/solid/openid [R=302,L]' /var/www/html/.htaccess +sed -i '96 i\ RewriteRule ^\\.well-known/openid-configuration /apps/solid/openid [PT]' /var/www/html/.htaccess ``` I get a 404 instead of a...

Hm, none of the flag combinations I tried seem to work, even though https://httpd.apache.org/docs/2.4/rewrite/flags.html seems to say it should just work the same way, but with passthrough or proxy instead...

That fixed it! :) Next error: ``` request.call https://test.server.com/.well-known/openid-configuration (node:17930) UnhandledPromiseRejectionWarning: OPError: expected 201 Created, got: 200 OK at processResponse (/Volumes/Michiel Docker/gh/michielbdejong/solid-bot-example/node_modules/openid-client/lib/helpers/process_response.js:41:11) at Function.register (/Volumes/Michiel Docker/gh/michielbdejong/solid-bot-example/node_modules/openid-client/lib/client.js:1460:26) at processTicksAndRejections (internal/process/task_queues.js:97:5) at...

Fixed in the test-server-24 branch. Next error: When clicking 'Allow' in the NC GUI you don't get redirected back to the app.

The web console shows: ``` Refused to send form data to 'https://test.server.com/apps/solid/sharing/812ec203ee00103a80d847d7c3d0ace6?returnUrl=/apps/solid/authorize?client_id%3D812ec203ee00103a80d847d7c3d0ace6%26scope%3Dopenid%2520offline_access%2520webid%26response_type%3Dcode%26redirect_uri%3Dhttp%253A%252F%252Flocalhost%253A3000%252Fredirect-from-solid-idp%26code_challenge%3De_fCMrHdT4oqMNY_6CgNY6L7dO4Uy9B8Xhi6v_JWMMI%26state%3DNbgUGvU2v2q3UpPpHriCUpZaC73coXOHjVWIp0BNHNM%26code_challenge_method%3DS256%26prompt%3Dconsent' because it violates the following Content Security Policy directive: "form-action 'self' localhost".

It does work correctly when I try to log in to https://noeldemartin.github.io/media-kraken/ with my test server.

Hm, I put the bot example on http://test.server.com:3000 but that didn't help either. Maybe Nextcloud wants the redirect to be https?