From 343f909497ac76a01cfc5a73760ff0356a2eb638 Mon Sep 17 00:00:00 2001
From: Alexandre Aubin <4533074+alexAubin@users.noreply.github.com>
Date: Fri, 12 Jan 2024 17:23:36 +0100
Subject: [PATCH] Update _common.sh: only display a warning when people are
 reverseproxying to an external IP

---
 scripts/_common.sh | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/scripts/_common.sh b/scripts/_common.sh
index d271360..be244cc 100644
--- a/scripts/_common.sh
+++ b/scripts/_common.sh
@@ -11,6 +11,6 @@ _validate_redirect_uri() {
     # Avoid uncrypted remote destination with reverse proxy mode
     # Indeed the SSO send the password in all requests in HTTP headers
     if [[ "$redirect_type" = "reverseproxy" ]] && [[ ! $target =~ $URL_REGEX_SECURE ]]; then
-        ynh_die --message="For secure reason, you can't use an unencrypted http remote destination couple with ssowat for your reverse proxy: $target" 1
+        ynh_print_warn --message="Reverseproxying using cleartext HTTP to a possibly external machine ($target) is insecure ... please be super careful about this."
     fi
 }