From 29a8c15d62d46d95a912115072c21d9ee3b5c30b Mon Sep 17 00:00:00 2001 From: Donald Zou Date: Sun, 29 Jun 2025 21:18:20 +0800 Subject: [PATCH] Update SSL --- src/modules/DashboardOIDC.py | 9 +++++++-- src/static/client/index.html | 1 - src/static/client/src/main.js | 1 - 3 files changed, 7 insertions(+), 4 deletions(-) diff --git a/src/modules/DashboardOIDC.py b/src/modules/DashboardOIDC.py index b31340f..d07366c 100644 --- a/src/modules/DashboardOIDC.py +++ b/src/modules/DashboardOIDC.py @@ -2,6 +2,7 @@ import os import json import requests from jose import jwt +import certifi class DashboardOIDC: @@ -43,7 +44,11 @@ class DashboardOIDC: return False, "Provider does not exist" provider = self.providers.get(provider) - oidc_config = requests.get(f"{provider.get('issuer').strip('/')}/.well-known/openid-configuration").json() + oidc_config = requests.get( + f"{provider.get('issuer').strip('/')}/.well-known/openid-configuration", + verify=certifi.where() + + ).json() data = { "grant_type": "authorization_code", @@ -65,7 +70,7 @@ class DashboardOIDC: id_token = tokens.get('id_token') jwks_uri = oidc_config.get("jwks_uri") issuer = oidc_config.get("issuer") - jwks = requests.get(jwks_uri).json() + jwks = requests.get(jwks_uri, verify=certifi.where()).json() headers = jwt.get_unverified_header(id_token) kid = headers["kid"] diff --git a/src/static/client/index.html b/src/static/client/index.html index 4d42385..1f11e24 100644 --- a/src/static/client/index.html +++ b/src/static/client/index.html @@ -35,7 +35,6 @@
WGDashboard Client
- diff --git a/src/static/client/src/main.js b/src/static/client/src/main.js index e574c79..57cb194 100644 --- a/src/static/client/src/main.js +++ b/src/static/client/src/main.js @@ -29,7 +29,6 @@ if (state && code){ }).then(data => { window.location.search = '' initApp() - if (!data.status){ const store = clientStore() store.newNotification(data.message, 'danger')