Reputation: 26505
gerrit and OpenID_SSO
I set up a gerrit server. For authentication gerrit allows among others OpenId and OpenId_SSO. The first one works fine, but requires me to enter the whole long OpenId. As I only want to allow a single provider the second option sounds perfect.
To use this, I have to supply the parameter auth.openIdSsoUrl which is "The SSO entry point URL".
How can I find out the correct URL to enter?
I already tried to use wireshark to monitor the http conversation during the normal OpenId login. But the URL involved there seems not to be the right one.
What exactly is an "entry point" in that context?
BTW: I currently use my own Atlassian Crowd as a OpenId server.
Edit: The java code involved can be found here.
Upvotes: 1
Views: 1569
Answers (1)
Reputation: 31057
The "entry point" is an OpenID endpoint URL. Using it to authenticate allows the OpenID server to say which user is authenticated, rather than requiring users to supply their own identifier. It's not used in the OpenID process unless you provide it, so it won't show in Wireshark logs.
From Crowd 2.6 there is an endpoint URL, which will end in openidserver/op.
Upvotes: 3
Related Questions
- Spring Security 5 - How to SSO from id_token (Google one-tap)
- Configuring Single Sign-on with OpenID Connect
- Gerrit Authentication required
- Spring Boot and Google SSO
- OAuth 2.0 , Open ID connect, and SAML
- Gerrit open id sign in issue
- Kerberos with Java
- openid consumer for gwt
- Step by step Google SSO (java)?
- Single Sign On using openSSO