OpenIDC/mod_auth_openidc

Generic Multiple Provider in 1 Apache server instance

mjunior75 opened this issue · 1 comments

Hi! i was trying to implement a multiple provider configuration that makes one server name for 2 providers.
I cannot understand the function of the location in the process of the authentication to multiple providers, and the .provider , .client and .conf needs to have this name ".provider" ???

in Location tag what is the path that targets the tag?

OPEN ID Connect Configuration

    OIDCRedirectURI https://blablabla/aut
    OIDCCryptoPassphrase Blablacrypto
    OIDCScope "openid email"
    OIDCClaimPrefix Oidc-Claim-
    PassEnv Oidc-Claim-preferred_username
    RequestHeader set X-Forwarded-User %{Oidc-Claim-preferred_username}e

    <Location /somepath-customer-migration-env>
        OIDCProviderMetadataURL https://blabla/auth/realms/tatablabla/.well-known/openid-configuration
        OIDCClientID someClientID
        OIDCClientSecret someClientSecret
        AuthType openid-connect
        Require valid-user
    </Location>

    <Location /somepath-customer-migration-env2>

OIDCProviderMetadataURL https://blabla/auth/realms/tatablabla2/.well-known/openid-configuration OIDCClientID someClientID OIDCClientSecret someClientSecret AuthType openid-connect Require valid-user

    </Location>
user:~/apache2/bin # ./httpd -t
AH00526: Syntax error on line 193 of /usr/local/apache2/conf/extra/httpd-ssl.conf:
OIDCProviderMetadataURL not allowed in <Location> context


I received this return after configuring because i was doing it at wrong form.Could you help me?
Best regards!