tyler.durden/gitea
1
0
Fork 0
mirror of https://github.com/go-gitea/gitea.git synced 2025-10-31 11:35:03 +01:00
Code Issues Packages Projects Releases Wiki Activity

Add a link to OpenID Issuer URL in WebFinger response (#26000)

Browse Source 
This change adds an entry to the `links` field of the
`/.well-known/webfinger` response. The new entry points to the `appURL`
as an OpenID issuer. This is consistent with the output of
`/.well-known/openid-configuration`, which also uses the value of
`appURL`.

This change is required for Tailscale SSO to work, as it uses the OpenID
Issuer URL when querying the Tailscale user email during signup/login
([docs](https://tailscale.com/kb/1240/sso-custom-oidc/#webfinger-setup)).
This commit is contained in:
Noah Snelson 2023-07-20 01:02:45 -07:00 committed by GitHub
parent 01c04607c7
commit df55f9b189
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 4 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
routers/web/webfinger.go
View File

@ -106,6 +106,10 @@ func WebfingerQuery(ctx *context.Context) {
Type: "application/activity+json", Type: "application/activity+json",
Href: appURL.String() + "api/v1/activitypub/user-id/" + fmt.Sprint(u.ID), Href: appURL.String() + "api/v1/activitypub/user-id/" + fmt.Sprint(u.ID),
}, },
{
Rel: "http://openid.net/specs/connect/1.0/issuer",
Href: appURL.String(),
},
} }
ctx.Resp.Header().Add("Access-Control-Allow-Origin", "*") ctx.Resp.Header().Add("Access-Control-Allow-Origin", "*")