Force https for OIDC behind proxy

2021-10-26 15:05:03 -04:00 · 2021-10-26 15:05:03 -04:00 · e57057b5ee
commit e57057b5ee
parent 431afa10f5
2 changed files with 8 additions and 6 deletions
--- a/publish.ps1
+++ b/publish.ps1
@ -1,2 +1,3 @@
+#!/snap/bin/pwsh
 Set-Location src/MyPrayerJournal
 dotnet publish -c Release -r linux-x64 -p:PublishSingleFile=true --self-contained false
--- a/src/MyPrayerJournal/Program.fs
+++ b/src/MyPrayerJournal/Program.fs
@ -125,6 +125,12 @@ module Configure =
            |> ctx.Response.Redirect
            ctx.HandleResponse ()

+            Task.CompletedTask
+          opts.Events.OnRedirectToIdentityProvider <- fun ctx ->
+            let bldr = UriBuilder ctx.ProtocolMessage.RedirectUri
+            bldr.Scheme <- cfg["Scheme"]
+            bldr.Port   <- int cfg["Port"]
+            ctx.ProtocolMessage.RedirectUri <- string bldr
            Task.CompletedTask
          )
    |> ignore
@ -153,12 +159,7 @@ module Configure =
      .UseRouting()
      .UseAuthentication()
      .UseGiraffeErrorHandler(Handlers.Error.error)
-      // .UseAuthorization()
-      .UseEndpoints (fun e ->
-          e.MapGiraffeEndpoints Handlers.routes
-          // TODO: fallback to 404
-          // e.MapFallbackToFile "index.html"
-          |> ignore)
+      .UseEndpoints (fun e -> e.MapGiraffeEndpoints Handlers.routes |> ignore)
    |> ignore
    app