You are viewing a plain text version of this content. The canonical link for it is here.

Posted to notifications@apisix.apache.org by GitBox <gi...@apache.org> on 2022/08/12 10:59:51 UTC

[GitHub] [apisix] jaysonsantos commented on issue #2426: bug：enable openid-connect plugin without redirect_uri got 500 error

jaysonsantos commented on issue #2426:
URL: https://github.com/apache/apisix/issues/2426#issuecomment-1212988261

   For those still struggling with that, by default resty.session will try to use `aes` as the encryption algorithm for the cookie that holds the session, but without setting `session_secret` `session.start` will fail with the reason `EVP_DecryptFinal_ex`, to avoid that you have to set it with a 32 bytes random value.
   If using the helm chart to spin up apisix, this should do the trick
   ```yaml
   configurationSnippet:
     httpSrv: |
       set $session_secret 8044c47e83b5ac9bb7c868eb8b202e93;
   ```
   
   to generate that secret:
   
   ```
   openssl rand 16 -hex
   ```


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: notifications-unsubscribe@apisix.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org