Stack Overflow
Stack Overflow

Questions tagged [mod-auth-openidc]

mod_auth_openidc is an authentication/authorization module for the Apache 2.x HTTP server that authenticates users against an OpenID Connect Provider. It can also function as an OAuth 2.0 Resource Server, validating access tokens presented by OAuth 2.0 clients against an OAuth 2.0 Authorization Server.

90 questions
1
vote
1 answer

Does mod_auth_openidc support STS(Security Token Service)?

Since mod_auth_openidc is an authentication/authorization module for the Apache 2.x HTTP server that authenticates users against an OpenID Connect Provider. If OpenID Connect Provider supports STS(Security Token Service) does mod_auth_openidc is…
GPrathap
  • 7,336
  • 7
  • 65
  • 83
1
vote
1 answer

Using subdomain cookies with mod_auth_openidc

So I have a wildcard host on an Apache Server using mod_auth_openidc The relevant bits of my Apache config are: ServerAlias *.sub.mydomain.com OIDCRedirectURI https://sub.mydomain.com/oauth2callback OIDCCookieDomain…
Severun
  • 2,893
  • 1
  • 16
  • 22
1
vote
1 answer

Trying to use Converged Microsoft Account and Azure AD with mod_auth_openidc

After reading the following article: http://blogs.technet.com/b/ad/archive/2015/08/12/azure-ad-microsoft-account-preview-sign-in-personal-and-work-accounts-using-a-single-stack.aspx I tried to implement an OpenID Connect/Oauth code flow per the…
Severun
  • 2,893
  • 1
  • 16
  • 22
1
vote
1 answer

mod_auth_openidc How to configure empty OIDCClaimPrefix in mod_auth_openidc.conf

I am using mod_auth_openidc as Resource Server. I want to configure OIDCClaimPrefix parameter as empty string, as I want to pass the claims received from OAuth server as it is(don't want any prefix with anything). I tried to keep OIDCClaimPrefix as…
Shashank
  • 249
  • 2
  • 13
1
vote
1 answer

Apache restart failed after adding OpenID Connect module

I use Debian 8.0 running an Apache v.2.4.10 and I try to add the OpenID Connect module named libapach2-mod-auth-openidc version 1.6.0. After installing the module, I enable it with the command: sudo a2enmod auth_openidc. This works fine and now I…
Gernot Lepej
  • 97
  • 1
  • 5
0
votes
0 answers

Is there a way to protect an individual file within a directory using OpenIDC and Redhat SSO?

I'm trying to implement SSO into my localhost website and I'm having issues with which files are being protected. For simplicity, the link takes you to a page with the URL known as localhost/test. I have a button on that page which is supposed to…
Henry
  • 11
  • 3
0
votes
0 answers

How to customize errors raising from mod_auth_openidc in Apache

I'm using Apache with OIDC ( mod_auth_openidc ) binded with JWT Problem is, if someone doesn't have access ( which is how the SSO works ) - I'm seeing a white page with a small text at the top left saying you don't have permissions. How can I…
Ricky Levi
  • 7,298
  • 1
  • 57
  • 65
0
votes
0 answers

Can apache httpd support oauth2 client credential flow?

Is it possible to configure Apache httpd to support the client authorization flow (oauth2) for accessing an API as a machine to machine connection. The scenario is as follows: a legacy application which does not support oauth2 should use Apache…
mmehl
  • 234
  • 1
  • 6
0
votes
0 answers

Initiate a logged in session by providing a valid access token with mod_auth_openidc

The scenario I am facing is the following: My server has acquired a valid access (and refresh) token for the identity provider. I would like to start a mod_auth_openidc session and put it's value in the appropriate cookie. Is this possible with…
Alexis Panagiotopoulos
  • 432
  • 3
  • 8
0
votes
1 answer

id_token_hint - how i can get it from module mod_auth_openidc

I'm newbe in this subject. I configured Keycloak and mod_auth_openidc in apache2.x. I have simple php app, and i want logout from this app, but i need id_token_hint…
Piotr Siewiera
  • 21
  • 2
0
votes
1 answer

Example to support both SAML and OpenIDC

I have a requirement to support both OIDC(openidc) and Mellon(Saml) in our application.We have created two apps in Okta for testing the flow. OIDC App SAML App httpd.conf looks something like below :
Prajith
  • 1
  • 2
0
votes
1 answer

Can we use multiple application for Mod_auth_openidc, such that we can use different client ids in one apache

I am working on Mod_auth_openidc with okta integration, where we need to provide OIDCClientID, OIDCClientSecret in the apache configurations that is linked with OIDC app from okta but i want to use multiple application, i.e multiple client ids. Any…
Rishav
  • 1
0
votes
2 answers

Storing GET request parameters when initialising Open IDC auth dance for use after

We are implementing Keycloak as an IDP, and will use it to secure some apps (Relying Parties) The apps are likely to use something like mod_auth_openidc, which will use the Authorization Code flow to direct the user to keycloak where the user will…
marc
  • 73
  • 7
0
votes
1 answer

How to install mod_auth_openidc on RHEL 7

I've been to the Releases site for mod_auth_openidc and brought down the rpm. And attempting to install requires cjose but attempting to find and install that poses a problem as it seems to incorrectly test the version of jansson (e.g., 2.10 is…
wnm3
  • 381
  • 3
  • 17
0
votes
1 answer

CORS Error from Angular when redirect to Keycloak

I have an SPA application deployed on Apache side as the static files. I use the apache module mod_auth_openidc as RP to authenticate the users. I use Spring boot as backend API. And I use Keycloak as IDP. During the first authentication the…
agaOver
  • 35
  • 5
1 2 3
4
5 6