fix: use the request url protocol for oidc

2024-03-30 05:17:53 -04:00 · 2024-03-30 05:17:53 -04:00 · 37f84cfba5
commit 37f84cfba5
parent 52c8e2c3bc
1 changed files with 6 additions and 0 deletions
--- a/app/utils/oidc.ts
+++ b/app/utils/oidc.ts
@ -43,7 +43,10 @@ export async function startOidc(issuer: string, client: string, request: Request
 	const nonce = generateRandomNonce()
 	const verifier = generateRandomCodeVerifier()
 	const challenge = await calculatePKCECodeChallenge(verifier)
+
 	const callback = new URL('/admin/oidc/callback', request.url)
+	callback.protocol = request.url.includes('localhost') ? 'http:' : 'https:'
+	callback.hostname = request.headers.get('Host') ?? ''
 	const authUrl = new URL(processed.authorization_endpoint)

 	authUrl.searchParams.set('client_id', oidcClient.client_id)
@ -106,6 +109,9 @@ export async function finishOidc(issuer: string, client: string, secret: string,
 	}

 	const callback = new URL('/admin/oidc/callback', request.url)
+	callback.protocol = request.url.includes('localhost') ? 'http:' : 'https:'
+	callback.hostname = request.headers.get('Host') ?? ''
+
 	const tokenResponse = await authorizationCodeGrantRequest(processed, oidcClient, parameters, callback.href, verifier)
 	const challenges = parseWwwAuthenticateChallenges(tokenResponse)
 	if (challenges) {