Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Incorrect redirect after Login when terminating TLS with reverse proxy #13031

Open
4 tasks done
ryancurrah opened this issue May 10, 2024 · 1 comment
Open
4 tasks done

Incorrect redirect after Login when terminating TLS with reverse proxy #13031

ryancurrah opened this issue May 10, 2024 · 1 comment
Labels
area/server P3 Low priority type/bug

Comments

@ryancurrah
Copy link
Contributor

ryancurrah commented May 10, 2024
edited

Pre-requisites

  • I have double-checked my configuration
  • I have tested with the :latest image tag (i.e. quay.io/argoproj/workflow-controller:latest) and can confirm the issue still exists on :latest. If not, I have explained why, in detail, in my description below.
  • I have searched existing issues and could not find a match for this bug
  • I'd like to contribute the fix myself (see contributing guide)

What happened/what did you expect to happen?

Description:

When clicking an Argo Workflows link, if I'm not logged in, I'm redirected to the login page. After logging in, I'm redirected to the workflows page instead of the original page I was trying to access.

Steps to reproduce:

  1. Click an Argo Workflows link to a specific page
  2. If not logged in, click the "Login" button
  3. After logging in, observe that you are redirected to the workflows page (not the page you intended to visit)

Debugging information:

Expected behavior:

After logging in, the user should be redirected to the original project they were trying to access, not the last viewed project.

Version: Argo Workflows v3.5.5

Version

v3.5.5

Paste a small workflow that reproduces the issue. We must be able to run the workflow; don't enter a workflows that uses private images.

n/a

Logs from the workflow controller

kubectl logs -n argo deploy/workflow-controller | grep ${workflow}

Logs from in your workflow's wait container

kubectl logs -n argo -c wait -l workflows.argoproj.io/workflow=${workflow},workflow.argoproj.io/phase!=Succeeded
@ryancurrah ryancurrah changed the title Users Not Returned to Original Page After Login Users Not Returned to Original Page After Login When Using Reverse Proxy and No TLS May 10, 2024
@ryancurrah ryancurrah changed the title Users Not Returned to Original Page After Login When Using Reverse Proxy and No TLS Users Not Returned to Original Page After Login When Using Reverse Proxy with No TLS Configured May 10, 2024
@agilgur5 agilgur5 changed the title Users Not Returned to Original Page After Login When Using Reverse Proxy with No TLS Configured Incorrect redirect after Login with terminating TLS with reverse proxy May 10, 2024
@agilgur5 agilgur5 changed the title Incorrect redirect after Login with terminating TLS with reverse proxy Incorrect redirect after Login when terminating TLS with reverse proxy May 10, 2024
@agilgur5
Copy link
Member

agilgur5 commented May 11, 2024
edited

Follow-up to this Slack thread

We could potentially use the request's protocol to determine this.

But secure: false has other implications, like the Cookie setting and potentially others that we should be careful around and ensure properly handle ingress TLS termination.

EDIT: Here's another redirect line that depends on it that should be changed too.

@agilgur5 agilgur5 added the P3 Low priority label May 11, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
area/server P3 Low priority type/bug
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@agilgur5 @ryancurrah