I’ve set up Jupyterhub behind an apache reverse proxy, using letsencrypt and following instructions in the official docs → Using a reverse proxy.
It works fine until I try to access a service set up as described in nbgrader doc for jupyterhub multiple courses.
I get the “Authorization form must be sent from authorization page”
Looking at the logs I see that the problem probably comes from a difference between the outter referer scheme (https) and the inner one (http).
OAuth POST from https://jupyter.myhost.be/hub/api/oauth2/authorize?client_id=service-progsoir&redirect_uri=%2Fservices%2Fprogsoir%2Foauth_callback&response_type=code&state=eyJ1...ZGVyIn0 != http://jupyter.myhost.be/hub/api/oauth2/authorize?client_id=service-progsoir&redirect_uri=%2Fservices%2Fprogsoir%2Foauth_callback&response_type=code&state=eyJ1...ZGVyIn0
I’ve tried what is mentionned there, but without success (https is rewrited to http, but querystring is not rewrited)
Any help is welcome
EDIT : continuing my investigations, I found that new option in JupyterHub 1.1.0 which solved my issue : service.oauth_no_confirm. As OAuth authentication is bypassed, the problem doesn’t arise anymore