flea1lt opened a new issue, #10977: URL: https://github.com/apache/apisix/issues/10977
### Description When deploying apisix using `apisix-docker` in a k8s environment, some users may access apisix via a domain using http/https on ports 80/443 However, when enable `cas-auth` plugin, the [uri_without_ticket](https://github.com/apache/apisix/blob/614be2a9e0031c9b95e3a97502b42b47989e2bc0/apisix/plugins/cas-auth.lua#L55) function generates uri based on `ctx.var.host`, which commonly resolves to port 9080 ```lua local function uri_without_ticket(conf, ctx) return ctx.var.scheme .. "://" .. ctx.var.host .. ":" .. ctx.var.server_port .. conf.cas_callback_uri end ``` So when the CAS server redirects upon successful user login, it directs to this port, resulting in the callback failing to reach apisix as the domain is only accessed via ports 80/443. To address this, I propose introducing a new configuration option, `callback_port`, within the cas-auth plugin. This configuration would allow users to specify the correct port for accessing apisix via the domain, thereby ensuring successful callbacks from the CAS server. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
