Stack Overflow
Stack Overflow

Questions tagged [mod-auth-openidc]

mod_auth_openidc is an authentication/authorization module for the Apache 2.x HTTP server that authenticates users against an OpenID Connect Provider. It can also function as an OAuth 2.0 Resource Server, validating access tokens presented by OAuth 2.0 clients against an OAuth 2.0 Authorization Server.

90 questions
16
votes
3 answers

Google authentication for Gerrit and Jenkins

Jenkins and Gerrit have both plugins for OpenID 2.0, but this API has been deprecated by Google May 19 2014 (https://developers.google.com/accounts/docs/OpenID) making it impossible for new installation to use and existing installations must migrate…
revau.lt
  • 2,674
  • 2
  • 20
  • 31
5
votes
0 answers

Set up Apache mod_auth_openidc as resource server with Keycloak

I want to setup a very simple system to grant authorized access to a static directory through Apache2 and it's mod_auth_openidc module, using Keycloak as the OAuth (OpenID Connect) server. After going through all the documentations and articles I…
Sumit Ghosh
  • 1,033
  • 10
  • 29
5
votes
1 answer

Apache with mod_auth_openidc and Azure AD is not working

I am setting up a legacy web application behind Apache. I want to enable only authenticated users to access it and we are using Office 365 and we have Azure AD accounts. We've decided that mod_auth_openidc can be a possible solution, but for some…
pmon
  • 53
  • 1
  • 4
5
votes
2 answers

How to authenticate domains on apache with google apps

I want to authenticate some of my company's internal websites with Google Apps. We have been using openid based apache module mod_auth_openid and since it got deprecated recently I started looking for alternatives and have found mod_auth_openidc.…
Bhargav Nanekalva
  • 606
  • 9
  • 31
4
votes
1 answer

Apache Directory Index showing files but not folders with mod_auth_openidc

I have a folder with files and folders inside it and I am running Apache 2.4 on Debian Jessie. Everything is chmoded 755 and chowned by www-data. I have enabled Directory Indexing with Options +Indexes and also with Options Indexes FollowSymlinks…
Valentin Mercier
  • 5,256
  • 3
  • 26
  • 50
4
votes
1 answer

mod_auth_openidc how to access user variables for use in PHP

I have mod_auth_openidc working on centos7 but cannot find the documentation that references how to extract passed user information. My logs show that the module is performing the following interrogations oidc_authz_match_claim: evaluating key…
art vanderlay
  • 2,341
  • 4
  • 35
  • 64
4
votes
2 answers

Windows Live Open ID Connect/Oauth 2.0 How to use for SSO with Apache mod_auth_openidc

I've got mod_auth_openidc working with Google and a hand rolled version of phpOIDC as my OP with the mod_auth_openidc as my identity provider. My problem appears to be a bug in the Microsoft implementation. mod_auth_openidc is a great mod and does…
Severun
  • 2,893
  • 1
  • 16
  • 22
3
votes
0 answers

mod_auth_openidc - OIDCSessionInactivityTimeout not working - 401

I have the OIDCSessionInactivityTimeout set in auth_openidc.conf. When the inactivity timeout hits, subsequent calls return a 401. If I refresh the page, my session is back to normal and all calls go through. I'm not being redirected back to the OP…
crankworx
  • 31
  • 2
3
votes
1 answer

User list for mod-auth-openidc

I have set-up openidc for apache2 on Ubuntu 14.04 LTS from the read me. Everything is running smoothly (I think) EXCEPT I can't find any documentation for how to configure an allowed user (white) list. I have a very small stable user list so I would…
Alex Mena
  • 43
  • 3
2
votes
1 answer

mod_auth_openidc: Refresh token fails

I am using mod_auth_openidc with Apache and varnish catch reverse proxy in front of Grafana to offload SSO OAuth2; once I login, after sometime I get the below fetch error, as I investigated the issue; found that the OAuth token gets expired and…
Varadharajan Nadar
  • 357
  • 1
  • 2
  • 11
2
votes
1 answer

Is there a way to bypass mod_auth_openidc module used in an Apache Web Server for some users/IP ranges/service-calls?

For a web app, we have used an Apache Web Server with mod_auth_openidc module as an authentication layer; it sits in front of our web app. There's a requirement to let requests from some services (eg. a web crawler, to crawl the web app) to bypass…
10gic_b0mb
  • 23
  • 4
2
votes
0 answers

How to access a REST API that is protected by a mod_auth_openidc proxy from Java?

Our ticket system server is protected by an Apache proxy with mod_auth_openidc (configured for OpenID connect), using Auth0 to manage the users. This works well when accessing the ticket system from a web browser: The user gets shown the login page…
Tobias B.
  • 107
  • 1
  • 8
2
votes
0 answers

How to use OIDCUnAuthAction pass in mod_auth_openidc correctly?

I want to use mod_auth_openidc for authentication only, by using what is set in REMOTE_USER. Currently, I have this: # reverse proxy to app # authorization not controlled by web server, but by app Require all…
kaleissin
  • 1,245
  • 13
  • 19
2
votes
1 answer

How to make Keycloak automatically redirect to login page if request fails

I have an Keycloak server and using mod_auth on Apache to manage the request. Currently, in my client application, when I face with a 401 request, I trigger an location.reload() and thus being redirected to Keycloak logging page. But this feel very…
Loredra L
  • 1,485
  • 2
  • 16
  • 32
2
votes
1 answer

mod_auth_openidc get claims as http headers for public location (all granted)

I have configured mod_auth_openidc on an apache 2.4 server. Everything is working ok for protected locations. For those resources the backend applications (PHP script or reverse proxied application) receive the claims as HTTP headers OIDC_xxx. On…
boubou191911
  • 56
  • 5
1
2 3 4 5 6