-
Notifications
You must be signed in to change notification settings - Fork 2k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[Bug]: v3.7.1 break the OIDC integration with Okta #6812
Comments
Hi @hanyouqing thanks for reporting! Be sure to check out the docs and the Contributing Guidelines while you wait for a human to take a look at this 🙂 Cheers! |
Hi @hanyouqing, thanks for reporting. I have replicated this.
We are looking into this. |
It appears that the problem lies in the return value at this location, where an object is returned instead of a string. However, a string is expected at this location. After modifying the generateTokenRequestParams function to return a string, the OIDC flow started functioning as expected. |
This error was introduced here: #6760 Just to clarify: This means that 3.7.0 works (but without the security fix above), and 3.7.1 does not. And it is not in any way limited to Okta. |
Hey folks, we've a fix coming |
Hey @anderius @bj0rn @hanyouqing , the fix is now available in 3.7.2 release. |
Version
edge
What Kubernetes platforms are you running on?
Other
Steps to reproduce
Background
We were running with v3.6.1 before upgrading to v3.7.1. The services integrated with Okta follow the docs below and work well.
Step to Reproduce
NGINX / OpenID Connect login failure
The text was updated successfully, but these errors were encountered: