[NIFI-9406] Registry logout with OIDC redirects to HTTP DELETE - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: 0.8.0, 1.13.2
Fix Version/s: 1.20.0, 1.19.1
Component/s: NiFi Registry
Labels:
None

Description

When NiFi Registry is configured with OIDC authentification, the logout link redirects to the logout URL of the Identity Provider (Keycloack in my case) with HTTP DELETE method, instead of GET.

NiFi Registry shows an error box : "Please contact your System Administrator."

NiFi does not have this bug.

Network calls :

DELETE https://revproxy/nifi-registry/logout
- HTTP 302 ("redirect")
OPTIONS https://revproxy/auth/realms/myrealm/protocol/openid-connect/logout?post_logout_redirect_uri=https://revproxy/nifi-registry-api/../nifi-registry

- HTTP 204 (No Content)
DELETE https://revproxy/auth/realms/myrealm/protocol/openid-connect/logout?post_logout_redirect_uri=https://revproxy/nifi-registry-api/../nifi-registry
- HTTP 405 (Method not allowed)

Attachments

Issue Links

is fixed by

NIFI-10177 Nifi Registry logout via OIDC

Resolved

Activity

People

Assignee:: Emilio Setiadarma

Reporter:: humpfhumpf

Votes:: 2 Vote for this issue

Watchers:: 4 Start watching this issue

Dates

Created:: 23/Nov/21 10:19

Updated:: 28/Mar/23 14:10

Resolved:: 28/Mar/23 14:10