Prashant Sharma
03/29/2022, 9:53 AMJoseph Heun
03/30/2022, 6:48 AMPrashant Sharma
03/30/2022, 8:48 AMJoseph Heun
03/30/2022, 10:10 AMPeter Plochan
03/30/2022, 11:00 AMPrashant Sharma
05/04/2022, 9:02 AMPeter Plochan
05/04/2022, 3:12 PM6. After that n/w call made to:: <https//G|https//><GDCN URL>/<https://gooddata-cn.primary.k8.irc-glb-dev.gcp.cwan.cloud/appLogin?redirectTo=%3Cour%7C<our> app domain>.What is the value of the
SPRING_REDIRECT_URI
cookie, e.g. in the step 5? Does it contain something like https://<our app domain>
? I’m asking because the last redirect (that one in the step 6) should be made to <our app domain>
instead of https://<GDCN URL>/<our app domain>
. Well, I consider that <our app domain>
is a separate domain, not something which is really hosted by https://<GDCN URL>
domain.Prashant Sharma
05/04/2022, 4:00 PMPeter Plochan
05/05/2022, 7:01 AMhttps://<GDCN URL>/login/oauth2/code/<GDCN URL>
(redirect url of auth0 call). I’m just curious if this cookie contains https://<app-domain>
or <app-domain>
without the protocol.
Also, the value within this particular HTTP cookie should correspond to the redirectTo
query parameter from the https://<GDCN URL>/appLogin?redirectTo=<our app domain>
call (step 2 in your network calls list).Prashant Sharma
05/05/2022, 10:26 AMPrashant Sharma
05/05/2022, 10:28 AMSPRING_REDIRECT_URI=AXqV5ft63H1cMG3vM2YqvDR0FpN21cxGC1pTmUbRzgEEvD+HJnpLOm2WVsag9WMyr4zJOT/+2lOwmaNqCBTw0wPUkq9WzFcaP5guFl3KuEFRDxa8Y/YTZznnp1OfCwESaAkmdswYpJ35hXJsCN1Kg8fHnpw=
Prashant Sharma
05/05/2022, 10:30 AMSPRING_REDIRECT_URI
cookie in its request. But contains SPRING_SEC_SECURITY_CONTEXT
and SPRING_SEC_OAUTH2_AUTHZ_CLIENT
with some valuePrashant Sharma
05/05/2022, 10:31 AMSPRING_REDIRECT_URI
cookie without any value.Peter Plochan
05/05/2022, 11:41 AMhttps://<our app domain>
instead of https://<GDCN URL>/https://<our app domain>
. cc @Ondrej MacekPrashant Sharma
05/06/2022, 12:08 PMPrashant Sharma
05/10/2022, 8:50 AMPeter Plochan
05/11/2022, 7:14 AM/some/path/in/your/custom/app
), but this needs having your custom application and GD.CN in the same domain. In this case you just need to configure proper routing. Don’t forget that API paths must not collide with the GD.CN.
• Redirect to GD.CN endpoint instead calling redirect to the whole domain (but I’m not sure if this will work). E.g:
a. Application calls /appLogin?redirectTo=/api/profile
b. The authentication flow proceeds with all redirects and in the last step, the browser will be redirected to the https://<GDCN URL>/api/profile
c. Your application then reads (or does noop with) the response of /api/profile
d. After last step in c.
, your application should be able to call other GD.CN API endpoints because the whole flow saves proper OAuth2 session cookies into the browser.Peter Plochan
05/11/2022, 11:17 AMhttps://<custom app domain>/welcome
in the redirectTo
parameter value instead of https://<our app domain>
. Could you please try to append root relative path (/
) into that URL, so the final redirectTo will be https://<our app domain>/
? ThanksPrashant Sharma
05/11/2022, 11:34 AMPeter Plochan
05/11/2022, 12:37 PM<http://GD.CN|GD.CN>
from your custom app or where the CN authentication flow starts? Thanks.
In the meanwhile, we will continue trying to simulate the issue. Sorry for inconveniences.Prashant Sharma
05/11/2022, 1:17 PMPrashant Sharma
05/11/2022, 1:30 PMPatrik Braborec
05/20/2022, 2:26 PMPrashant Kumar
05/21/2022, 7:02 AMPatrik Braborec
05/21/2022, 7:44 AMPatrik Braborec
05/30/2022, 7:49 AMPrashant Sharma
05/30/2022, 12:18 PMLubos Hilse
05/31/2022, 11:17 AMLubos Hilse
06/07/2022, 7:14 AMPrashant Sharma
06/09/2022, 12:21 PMLubos Hilse
06/14/2022, 11:32 AMPrashant Sharma
06/14/2022, 3:04 PMLubos Hilse
06/15/2022, 9:34 AMPrashant Sharma
06/20/2022, 9:10 AM302.