fix(dex): Fix for options
This commit is contained in:
@@ -160,9 +160,11 @@ ingress:
|
|||||||
nginx.ingress.kubernetes.io/ssl-redirect: "true"
|
nginx.ingress.kubernetes.io/ssl-redirect: "true"
|
||||||
nginx.ingress.kubernetes.io/backend-protocol: HTTP
|
nginx.ingress.kubernetes.io/backend-protocol: HTTP
|
||||||
# CORS: allow browser-based OIDC flows (e.g. token introspection, JWKS fetch)
|
# CORS: allow browser-based OIDC flows (e.g. token introspection, JWKS fetch)
|
||||||
|
# cors-allow-credentials=true causes nginx-ingress to reflect $http_origin instead of "*"
|
||||||
|
# (browsers reject Access-Control-Allow-Origin: * when credentials are present)
|
||||||
# TODO: migrate to Gateway API HTTPRoute with ResponseHeaderModifier filter when cilium gateway supports it cluster-wide
|
# TODO: migrate to Gateway API HTTPRoute with ResponseHeaderModifier filter when cilium gateway supports it cluster-wide
|
||||||
nginx.ingress.kubernetes.io/enable-cors: "true"
|
nginx.ingress.kubernetes.io/enable-cors: "true"
|
||||||
nginx.ingress.kubernetes.io/cors-allow-origin: "*"
|
nginx.ingress.kubernetes.io/cors-allow-credentials: "true"
|
||||||
nginx.ingress.kubernetes.io/cors-allow-methods: "GET, POST, OPTIONS"
|
nginx.ingress.kubernetes.io/cors-allow-methods: "GET, POST, OPTIONS"
|
||||||
nginx.ingress.kubernetes.io/cors-allow-headers: "Authorization, Content-Type"
|
nginx.ingress.kubernetes.io/cors-allow-headers: "Authorization, Content-Type"
|
||||||
hosts:
|
hosts:
|
||||||
|
|||||||
Reference in New Issue
Block a user