Authelia not redirecting to auth page when not authorized, worked on 1.36.4 #7965
Description
Description:
What issue is being seen? Describe what should be happening instead of
When running 1.37 it shows the raw HTML of a location redirect instead of redirecting. if i downgrade to 1.36.4 it works fine.
Repro steps:
Include sample requests, environment, etc. All data and inputs
Use standard Authelia configuration, update to 1.37
Environment:
Include the environment like gateway version, envoy version and so on.
1.37 / Authelia : v4.39.15
Envoy's 1.37 changelog is the following
so presumably it's something relating to this?
ext_authz: Check response header count and size after applying mutations and send a local reply if limits are exceeded.
ext_authz: Fixed HTTP ext_authz service to propagate headers (such as set-cookie) back to clients. The filter now uses allowed_client_headers for denied responses and allowed_client_headers_on_success for successful responses.
ext_authz: Fixed the HTTP ext_authz client to respect user-configured retry_on in retry_policy. Previously, the value was overridden with 5xx,gateway-error,connect-failure,reset. Controlled by runtime flag envoy.reloadable_features.ext_authz_http_client_retries_respect_user_retry_on (defaults to true); set to false to preserve the old behavior.
I'm guessing i am just missing some configuration option somewhere but i'm not sure what?
I also logged this with Authelia here: authelia/authelia#11080