Merge pull request #1 from OneIdentity/bugfix/noproxy

bugfix: do not use HTTPS proxy for contacting SPP by default
OneIdentity · Jul 1, 2021 · d0a21fb · d0a21fb
2 parents f0c4647 + 667f557
commit d0a21fb
Show file tree

Hide file tree

Showing 2 changed files with 10 additions and 0 deletions.
diff --git a/default.cfg b/default.cfg
@@ -33,6 +33,10 @@
 # Useful for stopping users from connecting from a local network.
 ; exclude_networks=10.0.0.0/8, 192.168.0.0/16
 
+# To use the system https proxy, set 'use_https_proxy=yes'
+# Otherwise it is assumed that SPP can be reached directly.
+use_https_proxy=no
+
 [credential_store]
 # Name of the local credential store configured in SPS for hosting sensitive
 # configuration data. For more information, read the "Store sensitive

diff --git a/plugin/plugin.py b/plugin/plugin.py
@@ -56,6 +56,12 @@ def spp_auth_provider(self):
         (username, domain) = split_username(self.username)
         return domain if domain else 'Local'
 
+    def set_https_proxy(self):
+        if self.plugin_configuration.getboolean('plugin', 'use_https_proxy', False):
+            super().set_https_proxy()
+        else:
+            self.logger.info("HTTPS proxy server configuration ignored, communicating directly")
+
     def do_authenticate(self):
         self.session_cookie.setdefault("SessionId", self.connection.session_id)