- 我已经检查过 discussions
- 我已经搜索过 issues
- 我已经仔细检查过FAQ
描述bug
- context:使用okta作为oidc提供方,k8s+helm chart 部署
- oidc登录成功,但登录用户显示为default(ID)格式,且已经设置过
user-display-name-claim-name,数据库中新增用户见截图 - okta中需要设置login/logout redirect url, 当正常登录时无问题,登出时apollo逻辑为重定向到ingress地址再跳转
/signin#logout,但此种方式在配置oidc服务方redirect url时会导致无法退出到登录页面(oidc登出时url必须与实际跳转的首个地址一致,但登入登出都为ingress地址,会进入死循环)
期望
oidc登陆正确且显示正确,登入与登出可以由用户自行控制url或取消自动跳转
截图
数据库新增用户截图:
okta与apollo user Info mapping:
application-oidc.yml:
额外的细节和日志
- 版本:2.0.0
- 错误日志: portal 正常,无日志
- 平台和操作系统:
6条答案
按热度按时间vaj7vani1#
@vdisk-group Do you happen to have any experience in this topic?
vhmi4jdf2#
@nobodyiam tried email/name/nickName, nothing changed but always the id itself
Thanks in advance!
atmip9wb3#
Hi @nobodyiam@vdisk-group , any updates about this?
tpxzln5u4#
Hi @nobodyiam@vdisk-group , any updates about this?
please try this package and add the logging level config to the application-github.properties
https://github.com/vdisk-group/apollo/releases/tag/tag-oidc-debug-log
3npbholx5#
Hi @vdisk-group , thanks for the package but unfortunately we are not allowed to uploaded a package directly to a VM due to company's policy, would you provide a hotfix image or Docker file so that i can either use the debug image or build and push it to the docker-hub?
Thanks in advance!
vuktfyat6#
@Shelby-Jiao You may use this docker file .