How to use mod_auth_openidc on a backend server made available through Apache Reverse proxy

[gahujipo]

We currently have split resources to different servers.

/ -> Server A: Entry page
/back/serverB -> Reverse Proxy to server B
/back/serverC -> Reverse Proxy to server C

Is there any way to authenticate server A with mod_auth_openidc and pass-through the session information to server B and/or C in case a request was made to the reverse proxy to them too?

[zandbelt]

if there's a shared domain between them, setting OIDCCookie to that domain would do it. If there's no shared domain, SSO will still happen only after bouncing off to the Provider.

[gahujipo]

Do you mean

# Specify the domain for which the "state" and "session" cookies will be set.
# This must match the OIDCRedirectURI and the URL on which you host your protected
# application. When using a relative OIDCRedirectURI this setting should most probably empty.
# When not defined the default is the server hostname that is currently accessed.
OIDCCookieDomain <cookie-domain>

or

# Define the cookie name for the session cookie.
# When not defined the default is "mod_auth_openidc_session".
OIDCCookie <cookie-name>

?

[zandbelt]

sorry, I meant OIDCCookieDomain indeed