Details
-
Bug
-
Status: Open
-
Normal
-
Resolution: Unresolved
-
None
-
None
-
None
-
puppetlabs-apache oidcsettings
-
Needs Assessment
-
Needs Assessment
Description
Basic Info
Module Version: puppetlabs-apache, latest (set in Puppetfile)
Puppet Version: 6.21.1
I was just configuring OIDC using the puppetlabs-apache module when I found out, that the type defined in `types/oidcsettings.pp` is (at least!) missing the parameter
Optional['CookieDomain'] => String,
i.e. in the vhost declaration it should end up like
OIDCCookieDomain <mycookiedomain>
Maybe it'd worth to check if all other parameters are set, I just got a problem with this param. Furthermore, I'm not sure if String is the right type for this variable but it worked for me.
Furthermore, I need to set the OIDCScope to "openid email", i.e. a string with whitespaces. To accomplish this I needed to change the template in ./templates/vhost/_auth_oidc.erb, I set line 3 as follows:
OIDC<%= key %> "<%= value %>"
Last but not least I need to set a "<Location>"-block to set the AuthType and Require statements. I am currently setting this with "custom_fragment" but a built-in solution that e.g. checks for '/' as in <Location /bla/> (auto-set the "/" in beginning/end) would be very helpful.
