openid-configuration"

@leonfaber reported in #466 (comment 23004):

Tank has problems resolving the OpenID config URL (production setup):

[ ERR ] 2025/05/15 13:05:03.870664 authentication/oidc: initialization failed: Get "http://aura.local/openid/.well-known/openid-configuration": dial tcp 127.0.0.1:80: connect: connection refused, will retry...

I guess this happens only in local setups where we resolve ${AURA_HOST_NAME} to 127.0.0.1 on the host. Since Tank cant resolve ${AURA_HOST_NAME} it forwards the DNS query to the hosts DNS (as stated in the docs), which then resolves it to 127.0.0.1 causing the error.

This can be fixed by assigning a network alias to the Nginx container, so that Tank and other containers properly resolve ${AURA_HOST_NAME} to the internal IP of the Nginx container. In this case they don't need to fallback to the hosts DNS anymore.

  nginx:
    networks:
      auranet:
        aliases:
          - ${AURA_HOST_NAME}

What prevents me from proposing this as an actual fix is that Iam not sure if this may have negative impact on already running production/test setups.

Proposal

Jointech to review the suggested fix and share potential problems
Implement this fix or provide an alternative solution
Question: Is this something which could also solve our routing issues with localhost, allowing us to use localhost instead of needing aura.local?

Edited Jun 10, 2025 by Sandra Stuhlhofer