我有一个注销链接,如下所示:
https://example.com/oauth2callback?logout=https%3A%2F%2Fexample.com%2Floggedout.html
换句话说,
/oauth2callback?logout=https://example.com/loggedout.htmlhttps://example.com/keycloak/logout为此,我添加了重写规则:
AllowEncodedSlashes On
RewriteRule ^/keycloak/logout$ /oauth2callback?logout=https%3A%2F%2Fexample.com%2Floggedout.html [L,QSA]
这行不通。 Apache日志显示,带有重写调试:
init rewrite engine with requested uri /keycloak/logout, referer: https://example.com/
...
applying pattern '^/keycloak/logout$' to uri '/keycloak/logout', referer: https://example.com/
rewrite '/keycloak/logout' -> '/oauth2callback?logout=httpsAFFexample.comFloggedout.html', referer: https://example.com/
split uri=/oauth2callback?logout=httpsAFFexample.comFloggedout.html -> uri=/oauth2callback, args=logout=httpsAFFexample.comFloggedout.html, referer: https://example.com/
local path result: /oauth2callback, referer: https://example.com/
prefixed with document_root to /var/www1/oauth2callback, referer: https://example.com/
go-ahead with /var/www1/oauth2callback [OK], referer: https://example.com/
这最终会变成
404/oauth2callbackmod_auth_openidcPT我已经尝试了很多这种方法的变体,使用
AllowEncodedSlashesOnNoDecodeRBlogout=httpsAFFexample.comFloggedout.html
AllowEncodedSlashes On
RewriteRule ^/keycloak/logout$ /oauth2callback?logout=https%3A%2F%2Fexample.com%2Floggedout.html [L,QSA]
您不需要
AllowEncodedSlashes但是,您确实需要对
%substitution字符串中的文字
RewriteRule 进行反斜杠转义,以防止 %3%2例如:
RewriteRule ^/keycloak/logout$ /oauth2callback?logout=https\%3A\%2F\%2Fexample.com\%2Floggedout.html [QSA,L]