helm: Make OAuth2 Proxy's allowed redirect domains configurable #357
Labels
Comments
xai
added a commit
to xai/theia-cloud-helm
that referenced
this issue
Feb 12, 2025
- Make whitelist_domains and cookie_domains configurable - Default is the previous behaviour: landing page and session host - Removes google.com from the default allowed redirects because there is no indication that this is necessary Fixes eclipse-theia/theia-cloud#357 Signed-off-by: Olaf Lessenich <[email protected]>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Is your feature request related to a problem? Please describe.
The Theia Cloud Helm chart configures allowed redirect domains for session pods' OAuth proxies. This list is defined in the proxy's config map's
whitelist_domains. This is currently hard coded to the landing page and session host. As this is also used for the redirects after logging out, only the landing page can be used as a redirect after logging out. This should be configurable.Describe the solution you'd like
Extend the Helm chart to allow configuring the
whitelist_domainsandcookie_domainsconfigurations. Also remove google.com from the default allowed redirects. This is likely a leftover.The text was updated successfully, but these errors were encountered: