This repository has been archived by the owner on May 10, 2019. It is now read-only.
Requesting IdP description document from modern HTTP server fails #4231
Comments
|
Thanks @djc. Sounds like the straightfoward fix involves updating node, which could be a lot of work. Are there other known ways to work around this issue without updating node? |
|
I can't think of any so far. :( |
|
@djc did you end up downgrading your server to work around this? It seems to fetch the doc from ochtman.nl OK currently. |
|
I disabled HTTP 2 in the configuration for now. 😢 |
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
I recently upgraded my web server (serving my IdP, among other things) to Apache 2.4.18 with mod_h2. Unfortunately, I now get the following message from Persona:
When requesting https://ochtman.nl/.well-known/browserid in Firefox, it works just fine.
My keybase.io proof also started failing shortly after the Apache upgrade, so I found keybase/keybase-issues#1925. It seems this was caused by nodejs/node#4334, and it seems likely that Persona could suffer from this, as well.
I think this is pretty bad, since it prevents logging in to any site with an email address that has a primary IdP, where that primary IdP has a modern web server with HTTP 2 support setup.
The text was updated successfully, but these errors were encountered: