zoraxy icon indicating copy to clipboard operation
zoraxy copied to clipboard
verified publisher icon tobychui

[BUG] Cannot reset conf for Forward Auth / Oauth2

Open hsenechal opened this issue 7 months ago • 5 comments

Describe the bug Unable to clear existing Forward Auth and Oauth2 conf, even partially

To Reproduce

  • Setup Forward Auth, try to remove Address or
  • Setup Oauth2 with OIDC well-known URL, then change configuration to another provider without OIDC well-known URL, using instead authorization / Token / User Info URL (example : from google to infomaniak)

Version 3.2.5

Screenshots

Image

hsenechal avatar Jul 24 '25 16:07 hsenechal

@hsenechal Just asking why you need to clear it? You can overwrite it with a new config. If you want to disable Oauth2, you can go to http proxy rule and remove oauth2 for that proxy rule.

I guess what you are looking for is some sort of "temporary disable all oauth2 check" toggle button?

tobychui avatar Jul 24 '25 23:07 tobychui

@tobychui The main issue in my case is that i'm forced to set up a well known OIDC url in oauth2, i cant find a way to let the field blank This is because Infomaniak does not provide a well known OIDC url, while google does

hsenechal avatar Jul 25 '25 06:07 hsenechal

ohh, okay. So the "problem" is that you need to fill all the fields and can't leave any blank?

AnthonyMichaelTDM avatar Jul 25 '25 06:07 AnthonyMichaelTDM

Indeed, and that's a problem because well known OIDC is not mandatory for Oauth2 to work, as long as you setup authorization / Token / User Info URL and scopes

hsenechal avatar Jul 25 '25 06:07 hsenechal

I've added a PR which allows clearing settings and clears up the confusion surrounding this by giving the user feedback. It fixes a small issue with the way scopes were handled, specifically that if scopes and the well known URL was specified the scopes did not take effect.

james-d-elliott avatar Aug 23 '25 12:08 james-d-elliott