OIDC Configuration Update
This is a patch release for Rallly v4 that addresses an issue with OpenID Connect (OIDC) authentication for self-hosted instances.
OIDC_ISSUER_URL Environment Variable Now Required
Due to an issue with how our underlying authentication library handles OIDC configurations, it no longer reliably infers the issuer URL from the OIDC discovery document (.well-known/openid-configuration) for all providers.
To ensure stable and consistent OIDC logins, Rallly v4.0.1 now requires the OIDC_ISSUER_URL environment variable to be explicitly set if you are using OIDC for authentication.
Action Required for Self-Hosted OIDC Users:
If you are using OIDC for authentication in your self-hosted Rallly instance, you must add the OIDC_ISSUER_URL environment variable to your configuration.
- What is
OIDC_ISSUER_URL? It's the base URL of your OIDC identity provider. - How to find it? You can typically find this URL as the
issuervalue within your OIDC provider's discovery document (usually accessible athttps://your-idp.com/.well-known/openid-configuration).
Full Changelog: v4.0.0...v4.0.1