Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Bug] Oauth2: Reuse TLS Certifcate valiadation and custom CA settings from preferences when accessing Auth and Token URLs #1684

Closed
pietrygamat opened this issue Feb 28, 2024 · 0 comments · Fixed by #2071
Closed

[Bug] Oauth2: Reuse TLS Certifcate valiadation and custom CA settings from preferences when accessing Auth and Token URLs #1684

pietrygamat opened this issue Feb 28, 2024 · 0 comments · Fixed by #2071

Comments

@pietrygamat
Copy link
Contributor

pietrygamat commented Feb 28, 2024
edited
Loading

In a test environment it may be expected to have some auth server not properly secured with TLS (domain mismatch/self-signed cert/etc). Although Bruno honors my customizations to TLS verificication when calling target URL without authorization, it will fail when attempting to obtain access token during OAuth2 flow, even though the endpoints are on the same server.

In example request.bru:

meta {
  name: My Request
  type: http
  seq: 1
}

get {
  url: https://localhost/userprofile
  body: none
  auth: oauth2
}

auth:oauth2 {
  grant_type: authorization_code
  callback_url: https://localhost/callback
  authorization_url: https://localhost/auth
  access_token_url: https://localhost/token
  client_id: client-id
  client_secret: 
  scope: profile
  pkce: true
}

let's assume my test server on localhost is hosted using self-signed certificate. If I switch off TLS Verification or upload custom CA Certificate in Preferences:
image
I am able to pass TLS handshake when reaching for https://localhost/userprofile. If I however enable OAuth2, bruno will not use these same settings when making behind the scenes calls to https://localhost/auth and https://localhost/token, forcing me to install the CA system wide.

Bruno: 1.10.0
#1003
@pietrygamat pietrygamat changed the title Oauth2: Reuse TLS Certifcate valiadation and custom CA settings from preferences when accessing Auth and Token URLs [Bug] Oauth2: Reuse TLS Certifcate valiadation and custom CA settings from preferences when accessing Auth and Token URLs Mar 4, 2024
@pietrygamat pietrygamat mentioned this issue Mar 14, 2024
Open
pietrygamat added a commit to pietrygamat/bruno that referenced this issue Apr 12, 2024
@pietrygamat
fix: Oauth2: Reuse TLS Certifcate valiadation and custom CA settings …
96fea33 
…from preferences when accessing Auth and Token URLs

usebruno#1684
@pietrygamat pietrygamat mentioned this issue Apr 12, 2024
Merged
5 tasks
pietrygamat added a commit to pietrygamat/bruno that referenced this issue Apr 12, 2024
@pietrygamat
fix: Oauth2: Reuse TLS Certifcate valiadation and custom CA settings …
0df5ad8 
…from preferences when accessing Auth and Token URLs

usebruno#1684
usebruno#1003
helloanoop pushed a commit that referenced this issue Apr 15, 2024
@pietrygamat
fix: Oauth2: Reuse TLS Certifcate valiadation and custom CA settings …
12263a7 
…from preferences when accessing Auth and Token URLs (#2071)

#1684
#1003
lizziemac pushed a commit to lizziemac/bruno that referenced this issue May 4, 2024
@pietrygamat @lizziemac
fix: Oauth2: Reuse TLS Certifcate valiadation and custom CA settings …
781d76c 
…from preferences when accessing Auth and Token URLs (usebruno#2071)

usebruno#1684
usebruno#1003
jwetzell pushed a commit to jwetzell/bruno that referenced this issue Aug 2, 2024
@pietrygamat @jwetzell
fix: Oauth2: Reuse TLS Certifcate valiadation and custom CA settings …
faa9ece 
…from preferences when accessing Auth and Token URLs (usebruno#2071)

usebruno#1684
usebruno#1003
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
1 participant
@pietrygamat