Comments (2)
I've now tested oidc-client-ts with Keycloak, which doesn't set X-FRAME-OPTIONS to DENY and has
Content-Security-Policy: frame-src 'self'; frame-ancestors 'self'; object-src 'none';
I wonder how no one else ever had an issue or has reported any issue with authentik when used in a SPA or PWA.
Is everyone just using confidential clients? In that case of course this issue never surfaces.
Or people just generally don't use oidc and just use this for ready-made apps.
I also wonder why I can't add this application I created with its provider to the default outpost.
Would that fix that problem? No idea.
Likewise I'm not sure if Go is doing the oidc serving or if python is part of that anywhere.
One picks Go for performance and resource usage, when you just have a proxy with Go in front of a Python API, that's quite non-sensical.
But maybe I got it all wrong.
All I know is, oidc-client-ts with authentik can't refresh/renew tokens and I'm getting a timeout and an error in chromium that the request was denied because X-FRAME-OPTIONS is set to DENY, and there is no way I can see that I can add them on a per provider or application basis in authentik.
So for me authentik is unable to perform its purpose.
I'll have to look elsewhere, also because there has been ZERO feedback.
from authentik.
It's be really a good option if we can control X-Frame-Options. Try to fix my app refresh a few hours, buy only now realize this is Authentik trouble. As a temporary solution for Chrome - this extention works for me
UPD: For me increasing time at provider setting make life really better
from authentik.
Related Issues (20)
- Upgrade from 2024.2.2 to 2024.4.2 Raises issue on SCIM users primary key. HOT 2
- Cloudflare Access Guide HOT 1
- Allow specifying outpost AUTHENTIK_TOKEN using blueprints
- Documentation about invitations not telling to add invitation stage to enrollment flow HOT 4
- Overriding trusted proxy CIDRs does not work HOT 2
- OIDC Provider Fails Across VLANs/Subnets HOT 1
- Overriding trusted proxy CIDRs does not work HOT 4
- User Names with commas break email sending
- One login to rule (access) them all! HOT 3
- device code flow gives error invalid_grant
- Does disabling password hashing remove already hashed passwords ?
- Github Icon, not showing up at login HOT 1
- Authentik OIDC Provider Does Not Use TLS Certificates HOT 3
- Proxy provider unauthenticated blacklist
- Broken macOS/Safari support
- An option to sync LDAP sources partially
- Deadlock reported by database HOT 6
- Missing Space in Login Screen for Applications HOT 2
- Jellyfin LDAP Bind User Permissions HOT 2
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from authentik.