Create
cancel
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in

crowid with apache mod_auth_openidc integration

staf wagemakers
I'm New Here
I'm New Here
Those new to the Atlassian Community have posted less than three times. Give them a warm welcome!
September 11, 2019

Hi,

As mod_authnz_crowd has been deprecated, I 'm trying to setup apache authentication with openid (crowid).

Openid &  mod_auth_openidc require additional parameters OIDCCryptoPassphrase & OIDCProviderMetadataURL etc.

I went through the crow/crowid documentation but I didn't find these parameters.

Does somebody know where I can find these parameters?

Or;

1/ has somebody successfully integraded apache with crowid openid authentication?

2/ What is the recommended way to setup apache authentication with crowd?

kind regards,

--

staf

2 answers

1 accepted

0 votes
Answer accepted
Bruno Vincent
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
September 12, 2019

Hi @staf wagemakers 

You did not find those parameters in the current CrowdID's documentation because they are referring to the OpenID Connect (OIDC) protocol whereas as of today CrowdID supports the OpenID 2.0 protocol. Though OpenID 2.0 may be considered as the ancestor of OIDC, they are very different protocols.

That being said, Atlassian has just announced that they are working on supporting OpenID Connect in all their core products in Data Center version, which includes Crowd as far as I understand.

Regarding your second question, I haven't tested it myself but you may want to take a look at the following connector and give it a try: https://github.com/ferstl/cwdapache-rhel7

0 votes
staf wagemakers
I'm New Here
I'm New Here
Those new to the Atlassian Community have posted less than three times. Give them a warm welcome!
September 13, 2019

Hi @Bruno Vincent

   CrowdID supports the OpenID 2.0 protocol. Though OpenID 2.0 may be

   considered as the ancestor of OIDC, they are very different protocols.

   Thanks for your reply and your clarification.

It is pitty that Openidc isn't supported. The Openid apache module ( mod_auth_openid module http://findingscience.com/mod_auth_openid/index.html) has a message that they are looking for new maintainer which is not very encouraging to use it in a supported environment. It's also not included in most GNU/Linux distribution and not supported by Redhat, etc.

    Regarding your second question, I haven't tested it myself but you

    may want to take a look at the following connector and give it a try:

    https://github.com/ferstl/cwdapache-rhel7

I tried it and it works fine. But it'd be nice if Atlassian provided a supported solution. Let's hope that the Openidc support will resolve this issue.

cheers,

--

staf

Suggest an answer

Log in or Sign up to answer
TAGS
AUG Leaders

Atlassian Community Events