File tree Expand file tree Collapse file tree 2 files changed +3
-4
lines changed Expand file tree Collapse file tree 2 files changed +3
-4
lines changed Original file line number Diff line number Diff line change @@ -19,6 +19,9 @@ server {
1919 include conf.d/openid_connect.server_conf; # Authorization code flow and Relying Party processing
2020
2121 # OpenID Connect Provider (IdP) configuration
22+ resolver 8.8.8.8 ; # For DNS lookup of IdP endpoints;
23+ subrequest_output_buffer_size 32k ; # To fit a complete tokenset response
24+
2225 set $oidc_jwt_keyfile /etc/nginx/my_idp_jwk.json;
2326 set $oidc_authz_endpoint "http://127.0.0.1:8080/auth/realms/master/protocol/openid-connect/auth" ;
2427 set $oidc_token_endpoint "http://127.0.0.1:8080/auth/realms/master/protocol/openid-connect/token" ;
Original file line number Diff line number Diff line change 3737 # to construct the OpenID Connect token request, as per:
3838 # http://openid.net/specs/openid-connect-core-1_0.html#TokenRequest
3939 internal ;
40- resolver 127.0.0.1 ; # For DNS lookup of $oidc_token_endpoint ;
4140 gunzip on; # Decompress if necessary
4241
4342 proxy_set_header Content-Type "application/x-www-form-urlencoded" ;
4443 proxy_method POST;
4544 proxy_set_body "grant_type=authorization_code&code=$arg_code&client_id=$oidc_client&client_secret=$oidc_client_secret&redirect_uri=$scheme://$host:$server_port$redir_location" ;
4645 proxy_pass $oidc_token_endpoint ;
47- proxy_buffers 8 32k ; # Increase buffers to hold a complete response
48- proxy_buffer_size 128k ;
49- proxy_busy_buffers_size 128k ;
5046
5147 error_log /var/log/nginx/oidc_error.log debug;
5248 }
You can’t perform that action at this time.
0 commit comments