Nathanael Liechti
Nathanael Liechti
> Can we also add a another validation check from the spec docs found here https://openid.net/specs/openid-connect-core-1_0.html#UserInfo it seem like we should be atleast checking this: `NOTE: Due to the possibility...
Allright, I implemented all the feedback on the PR and tested if login works now, with the following result: ``` time="2022-10-18T16:56:05+02:00" level=info msg="finished unary call with code Unauthenticated" error="rpc error:...
> One other validation that should be done if we can is follow the specs in regards to section `5.3.4. UserInfo Response Validation` > > ``` > The Client MUST...
Not necessarily, you'd need to write the temporary sed file to another directory, e.g e tmp directory one could mount temoporare storage too. So ideally the files in the image...
That wouldn't work. `/var/www/html` is read-only so copying files into it won't work. Is there the option to read the `ENDPOINT` from env directly inside your JS? Then you won't...
Hey! Thanks for the fix! Unfortunately I can't test it this week, as I'm on vacation right now. Would you mind keeping it open for a week?
I tried it, there are still some issues with read-only FS and non-root. I guess the app is just not made to be run with read-only FS. I'm closing this...
Is this still an issue tracked? I encountered the same issue and stumbled upon that. It seems to be true that the document services only work when `/var/www` is owned...
It's partially right. That's what exactly got to the error: 1. You setup a nextcloud or something on a debian 11 machine that has it's webroot in `/var/www/nextcloud` 2. You...
@igwyd it was just the easiest way for my backup solution. If I remember correctly the user home of `www-data` is `/var/www`, so I placed my scripts in there (run...