-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Luis,
On 3/13/20 14:28, Luis Rodríguez Fernández wrote: > Hello Stephane, > >> moving authentication at tomcat level with an openid Realm > > If I understand you correctly you want to make the authentication > process in tomcat instead of delegating in your apache proxy, don't > you ? I would have a look then at the tomcat keycloak adapter [1]. > Me I am using the SAML one in tomcat 8.5 & 9 and it works like a > charm! Unfortunately for the OP, your answer isn't helpful because OpenID doesn't use SAML. Single-legged SAML is indeed very simple but you can't achieve OpenID with it. - -chris -----BEGIN PGP SIGNATURE----- Comment: Using GnuPG with Thunderbird - https://www.enigmail.net/ iQIzBAEBCAAdFiEEMmKgYcQvxMe7tcJcHPApP6U8pFgFAl5r3B8ACgkQHPApP6U8 pFjREhAApEquPGQXiP662k7AFgVDuHKjgb4OWW/BHHh78jr3+TwnkgkJYuoJPXNH SQmYHfpUyVXSGxMflxYnUk03u2oOY+TPZfpOzZHf8CV4zSwExCsuk9oq/ZGv32yX GFtNIh/A7T5Bcn+NYrHs9y2Nxf4q0xZcS22R70ok1LxAC8wp6uwTGSDLnzAc+Y3z PDewwQnOWh7jQnhQDZTJWhNhLQx8w0lK0cNkWtr/QoUQcxJEo7E9PFyEXsFZ9v9o o2yTv1BclqDSP+SZyCkdbECWcPR1MLtKqaeTiJRZo5qQsMXeElR6xWcq+CbYZR1w mSKqRCDrttB6hO8u66gVdTpei1a1KWO4Q7aVNp+KulwITk3hOcmGuEzf1d29e1z5 aEDRhqJ+BDTblQnUpGpRXfsuj9DzCkIS6tD5fiqfFJgcpuxz7+O55FrRt8qZ7Hip fTD1Kifmx/H8lzHEeT9nIVv+ljYMuluwueVMRj1QORCuvzj65wZxjV2ZJYN/r+nm m0xi5M/MIl328/bc9aBsoFnAARpRvFkyTjx5M+n4mbdKr2/pXQGCYiOpOuUxgq8O 43w16fef18fLptMQ0QxCxkBySU/1qV8Yc7ZgXGs280JEa8EeLg+74V1CW4wgoUVS AhApnTPEwtUy2+hDBeIpETdIwlmUUF/3rQrVDUnEhxNapLvoWEc= =YRnI -----END PGP SIGNATURE----- --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
