Differences
This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision | ||
devel:documentation:application_configuration:dev:backend [2023/03/22 14:25] apeterova |
devel:documentation:application_configuration:dev:backend [2023/12/01 13:10] (current) chalupat [Authentication] |
||
---|---|---|---|
Line 991: | Line 991: | ||
In the application profile ('' | In the application profile ('' | ||
- | |||
<code properties> | <code properties> | ||
# enable/ disable filter - enabled by default or by filter implementation. | # enable/ disable filter - enabled by default or by filter implementation. | ||
Line 1082: | Line 1081: | ||
</ | </ | ||
+ | |||
+ | === OIDC authentication === | ||
+ | |||
+ | @since 13.1.0 [[this> | ||
+ | |||
+ | <code properties> | ||
+ | # Enable authentication via OIDC when false IDM will return 503 SERVICE_UNAVAILABLE on enpoints used for OICD auth, and ignore any Bearer token. Default: false | ||
+ | idm.pub.core.oidc.enabled=false | ||
+ | # REQIRED configuration | ||
+ | # client-id confugured in CAS Service | ||
+ | idm.sec.core.oidc.client-id= | ||
+ | # client-secret confugured in CAS Service | ||
+ | idm.sec.core.oidc.client-secret= | ||
+ | # Base URL where OICD provider is accessible. Syntax of this field is https:// | ||
+ | idm.sec.core.oidc.url= | ||
+ | |||
+ | # OPTIONAL configuration | ||
+ | idm.sec.core.oidc.login-path=/ | ||
+ | idm.sec.core.oidc.logout-path=/ | ||
+ | idm.sec.core.oidc.token-path=/ | ||
+ | |||
+ | # | ||
+ | spring.security.oauth2.client.registration.cas.client-id=${idm.sec.core.oidc.client-id} | ||
+ | spring.security.oauth2.client.registration.cas.client-secret=${idm.sec.core.oidc.client-secret} | ||
+ | spring.security.oauth2.client.registration.cas.scope=openid | ||
+ | spring.security.oauth2.client.registration.cas.redirect-uri={baseUrl}/ | ||
+ | # | ||
+ | # | ||
+ | |||
+ | spring.security.oauth2.client.provider.cas.issuer-uri=${idm.sec.core.oidc.url} | ||
+ | # | ||
+ | # | ||
+ | |||
+ | |||
+ | </ | ||
+ | |||
==== Backup ==== | ==== Backup ==== |