Moonlight-Panel/Moonlight
2
1
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Added option for oidc to disable https only cookies for deployments using an ip

Browse Source
This commit is contained in:
ChiaraBm
2026-02-09 12:22:03 +01:00
parent cc7f55c988
commit 4daf986f3e
2 changed files with 7 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
Moonlight.Api/Startup/Startup.Auth.cs
View File

@@ -74,6 +74,12 @@ public partial class Startup
options.Authority = oidcOptions.Authority;
options.RequireHttpsMetadata = oidcOptions.RequireHttpsMetadata;
if (oidcOptions.DisableHttpsOnlyCookies)
{
options.NonceCookie.SecurePolicy = CookieSecurePolicy.SameAsRequest;
options.CorrelationCookie.SecurePolicy = CookieSecurePolicy.SameAsRequest;
}
var scopes = oidcOptions.Scopes ?? ["openid", "email", "profile"];
options.Scope.Clear();