jolly-pencil-87491
05/12/2022, 8:53 AMdamp-sunset-69236
05/12/2022, 8:57 AMaccess-rules.yml
?jolly-pencil-87491
05/12/2022, 9:20 AMjolly-pencil-87491
05/13/2022, 5:57 AMdamp-sunset-69236
05/13/2022, 6:01 AM"url": "<http://localhost:4455/>",
You need to have either
"url": "<http://localhost:4455/><**>",
for glob pattern matching or
"url": "<http://localhost:4455/><.*>",
for regexdamp-sunset-69236
05/13/2022, 8:01 AM<http://localhost:4455>
to make it work you need to use regex or glob patternsjolly-pencil-87491
05/16/2022, 8:08 AMdamp-sunset-69236
05/16/2022, 8:46 AMjolly-pencil-87491
05/16/2022, 8:59 AMjolly-pencil-87491
05/17/2022, 7:20 AMdamp-sunset-69236
05/17/2022, 7:50 AM<https://econergy.powerview.io/designer-viewer>
damp-sunset-69236
05/17/2022, 7:52 AMjolly-pencil-87491
05/17/2022, 7:53 AMdamp-sunset-69236
05/17/2022, 7:54 AMjolly-pencil-87491
05/17/2022, 7:56 AMdamp-sunset-69236
05/17/2022, 8:43 AM<https://econergy.powerview.io:14907/designer-viewer>
. You need to add strip_prefix
to your access rule to fix itdamp-sunset-69236
05/17/2022, 8:45 AM"upstream": {
"url": "<https://econergy.powerview.io:14907/>",
"strip_path": "/designer-viewer"
},
jolly-pencil-87491
05/17/2022, 11:24 AMjolly-pencil-87491
05/18/2022, 9:17 AMdamp-sunset-69236
05/18/2022, 9:23 AMjolly-pencil-87491
05/18/2022, 9:34 AMdamp-sunset-69236
05/18/2022, 9:38 AM"url": "<http://localhost:4455/designer-viewer/><.*>",
http://localhost:4455/designer-viewer URL configured for oathkeeper, however your static files does not match this ruledamp-sunset-69236
05/18/2022, 9:38 AMurl: <http://localhost:4455/><**>
damp-sunset-69236
05/18/2022, 9:39 AMjolly-pencil-87491
05/18/2022, 10:00 AMjolly-pencil-87491
05/18/2022, 10:14 AMdamp-sunset-69236
05/18/2022, 10:42 AMjolly-pencil-87491
05/18/2022, 10:48 AMdamp-sunset-69236
05/18/2022, 10:55 AM[
{
"id": "allow-designer-viewer-anonymous",
"version": "v0.36.0-beta.4",
"upstream": {
"url": "<https://econergy.powerview.io:14907/>",
"strip_path": "/designker-viewer"
},
"match": {
"url": "<http://localhost:4455/designer-viewer/><.*>",
"methods": [
"GET"
]
},
"authenticators": [
{
"handler": "cookie_session",
}
],
"authorizer": {
"handler": "allow"
},
"mutators": [
{
"handler": "noop"
}
],
"errors": [
{
"handler": "redirect",
"config": {
"to": "<https://econergy.powerview.io/powerview/login3.aspx>"
}
}
]
},
{
"id": "allow-root-anonymous",
"version": "v0.36.0-beta.4",
"upstream": {
"url": "<https://econergy.powerview.io:14907/>"
},
"match": {
"url": "<http://localhost:4455/><**>",
"methods": [
"GET"
]
},
"authenticators": [
{
"handler": "cookie_session",
}
],
"authorizer": {
"handler": "allow"
},
"mutators": [
{
"handler": "noop"
}
],
"errors": [
{
"handler": "redirect",
"config": {
"to": "<https://econergy.powerview.io/powerview/login3.aspx>"
}
}
]
},
]
jolly-pencil-87491
05/18/2022, 11:01 AMdamp-sunset-69236
05/18/2022, 11:42 AM"url": "<http://localhost:4455/><**>",
this
"url": "<http://localhost:4455/><.*>",
damp-sunset-69236
05/18/2022, 11:42 AMjolly-pencil-87491
05/18/2022, 11:43 AM{
"error": {
"code": 500,
"status": "Internal Server Error",
"message": "Expected exactly one rule but found multiple rules"
}
}
damp-sunset-69236
05/18/2022, 11:43 AM{
"id": "allow-root-anonymous",
"version": "v0.36.0-beta.4",
"upstream": {
"url": "<https://econergy.powerview.io:14907/>",
"strip_path": "/designer-viewer"
},
"match": {
"url": "<http://localhost:4455/><.*>",
"methods": [
"GET"
]
},
"authenticators": [
{
"handler": "cookie_session",
}
],
"authorizer": {
"handler": "allow"
},
"mutators": [
{
"handler": "noop"
}
],
"errors": [
{
"handler": "redirect",
"config": {
"to": "<https://econergy.powerview.io/powerview/login3.aspx>"
}
}
]
},
]
jolly-pencil-87491
05/18/2022, 11:45 AM{
"error": {
"code": 500,
"status": "Internal Server Error",
"message": "error parsing regexp: invalid nested repetition operator in `^**$`"
}
}
damp-sunset-69236
05/18/2022, 11:55 AMjolly-pencil-87491
05/18/2022, 11:58 AMdamp-sunset-69236
05/18/2022, 12:12 PMjolly-pencil-87491
05/18/2022, 12:24 PM{
"error": {
"code": 500,
"status": "Internal Server Error",
"message": "error parsing regexp: invalid nested repetition operator in `^**$`"
}
}
damp-sunset-69236
05/18/2022, 12:28 PM"url": "<http://localhost:4455/><**>",
to this
"url": "<http://localhost:4455/><.*>",
jolly-pencil-87491
05/19/2022, 7:38 AMdamp-sunset-69236
05/19/2022, 7:49 AMjolly-pencil-87491
05/19/2022, 7:50 AMjolly-pencil-87491
05/19/2022, 7:50 AMdamp-sunset-69236
05/19/2022, 7:52 AMjolly-pencil-87491
05/19/2022, 7:54 AMdamp-sunset-69236
05/19/2022, 8:10 AMjolly-pencil-87491
05/19/2022, 8:14 AMdamp-sunset-69236
05/19/2022, 8:29 AMjolly-pencil-87491
05/19/2022, 8:34 AMjolly-pencil-87491
05/19/2022, 9:13 AMjolly-pencil-87491
05/20/2022, 5:30 AMdamp-sunset-69236
05/20/2022, 5:38 AMbaseURL
or something similar for that purpose. It works like this
econergy exposes everything on /design/. You configure a simple rule for oathkeeper (you have plenty of examples in this thread).
Everything should work fine using this setup. The same thing you need to do with another service.damp-sunset-69236
05/20/2022, 5:39 AM