Skip to content

Support for $oidc_pkce_enable directive through OIDC Policy #6713

New issue
New issue
Open
Task
#7765
Open
Support for $oidc_pkce_enable directive through OIDC Policy#6713
Task
#7765
Assignees
javorszkypdabelf5
Labels
area/securityIssues related to security capabilities or concernsbacklogPull requests/issues that are backlog itemsproposalAn issue that proposes a feature requestrefinedIssues that are ready to be prioritized
Milestone
 
v5.1.0
@shaun-nx

Description

@shaun-nx
shaun-nx
opened on Oct 25, 2024

As a user of NGINX Ingress Controller, I would like to ensure my OIDC Policies can enable PCKE (Proof of key exchange) to further enhance the security posture of my applications

Final part for #1782

UACs:

  • Update OIDC policy to enable toggling the $oidc_pkce_enable directive
  • Update documentation to detail the implications of this setting

References:

This directive is currently configured in our templates here:
https://github.com/nginxinc/kubernetes-ingress/blob/release-3.7/internal/configs/version2/nginx-plus.virtualserver.tmpl#L92

Metadata

Metadata

Assignees

Labels

area/securityIssues related to security capabilities or concernsbacklogPull requests/issues that are backlog itemsproposalAn issue that proposes a feature requestrefinedIssues that are ready to be prioritized

Type

Projects

NGINX Ingress Controller

Status

In Review 👀

Milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions