From 343f909497ac76a01cfc5a73760ff0356a2eb638 Mon Sep 17 00:00:00 2001 From: Alexandre Aubin <4533074+alexAubin@users.noreply.github.com> Date: Fri, 12 Jan 2024 17:23:36 +0100 Subject: [PATCH] Update _common.sh: only display a warning when people are reverseproxying to an external IP --- scripts/_common.sh | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/scripts/_common.sh b/scripts/_common.sh index d271360..be244cc 100644 --- a/scripts/_common.sh +++ b/scripts/_common.sh @@ -11,6 +11,6 @@ _validate_redirect_uri() { # Avoid uncrypted remote destination with reverse proxy mode # Indeed the SSO send the password in all requests in HTTP headers if [[ "$redirect_type" = "reverseproxy" ]] && [[ ! $target =~ $URL_REGEX_SECURE ]]; then - ynh_die --message="For secure reason, you can't use an unencrypted http remote destination couple with ssowat for your reverse proxy: $target" 1 + ynh_print_warn --message="Reverseproxying using cleartext HTTP to a possibly external machine ($target) is insecure ... please be super careful about this." fi }