Solved: How to get back to application after successful login

[mbausche]

Hi,

we configured our apache to use the module that way:

OIDCSSLValidateServer Off
OIDCProviderMetadataURL <urlTo>/.well-known/openid-configuration
OIDCClientID <id>
OIDCClientSecret <secret>

# OIDCRedirectURI is a vanity URL that must point to a path protected by this module but must NOT point to any content
OIDCRedirectURI https://<url>/oauth-test
OIDCCryptoPassphrase <passphrase>

OIDCInfoHook iat access_token access_token_expires id_token userinfo refresh_token session
OIDCScope "openid offline_access"

<VirtualHost *:443>
               ServerName <server>

              <Location /oauth-test>
                 AuthType openid-connect
                 Require valid-user
              </Location>
<VirtualHost>

Which resource should my application call to trigger the login and how can we define the redirect url which is called after a successful redirection?

I would expect an url like this: https:///oauth-test?login=true&redirect=

Is there docmentation or a sample available how to use the configured module?

Thank you for you support and kind regards
Michael

[mbausche]

Or is it that way:

• We have to configure a OIDCRedirectURI which is for example /secure/oauth-test
• An The location in the virtualHost would be /secure
• The user calls /secure/app.php
• mod_auth_openidc is called because the user called an secured resource, displays the login and redirects t app.php after successfull login
• REMOTE_USER ist set to <id_token> after successful login

kind regards
Michael

[mbausche]

We solved it. As assumed the configuration

• OIDCRedirectURI = /secure/oauth-test
• location in the virtualHost = /secure

is working.

The only additional thing we had to add is the DirectorySlash=Off for the location. So that the call to oauth-test?info=json is working