baha/skyline-apiserver
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

[test] oidc through iframe

Browse Source
This commit is contained in:
baha 2025-01-09 13:59:06 +00:00
parent 718cfe2b36
commit d95fec7132
2 changed files with 4 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
skyline_apiserver/api/v1/login.py
View File

@ -300,8 +300,8 @@ async def websso(
) )
else: else:
response = RedirectResponse(url="/base/overview", status_code=status.HTTP_302_FOUND) response = RedirectResponse(url="/base/overview", status_code=status.HTTP_302_FOUND)
response.set_cookie(CONF.default.session_name, profile.toJWTPayload()) response.set_cookie(CONF.default.session_name, profile.toJWTPayload(),secure=True,samesite="None")
response.set_cookie(constants.TIME_EXPIRED_KEY, str(profile.exp)) response.set_cookie(constants.TIME_EXPIRED_KEY, str(profile.exp),secure=True,samesite="None")
return response return response

3
skyline_apiserver/main.py
View File

@ -42,7 +42,8 @@ async def on_startup() -> None:
if CONF.default.cors_allow_origins: if CONF.default.cors_allow_origins:
app.add_middleware( app.add_middleware(
CORSMiddleware, CORSMiddleware,
allow_origins=[str(origin) for origin in CONF.default.cors_allow_origins], allow_origins=[
str(origin) for origin in CONF.default.cors_allow_origins] + ['https://demo.felcloud.io', 'https://baha-dev.felcloud.io'],
allow_credentials=True, allow_credentials=True,
allow_methods=["*"], allow_methods=["*"],
allow_headers=["*"], allow_headers=["*"],