Hi there I am quite new to OIDC so any advice is much appreciated.
I am trying to login into Dspace 7.3 via OIDC authentication plugin. I have the following configuration: # OIDC authentication/authorization. See authenication-oidc.cfg for default configuration. plugin.sequence.org.dspace.authenticate.AuthenticationMethod = org.dspace.authenticate.OidcAuthentication authentication-oidc.authorize-endpoint=<domain>/idp/profile/oidc/authorize authentication-oidc.token-endpoint=<domain>/idp/profile/oidc/token authentication-oidc.user-info-endpoint=<domain>/idp/profile/oidc/userinfo authentication-oidc.client-id=<client_id> authentication-oidc.client-secret=<client_secret> authentication-oidc.scopes = openid,<custom scopes> authentication-oidc.user-info.email = email authentication-oidc.user-info.first-name = given_name authentication-oidc.user-info.last-name = family_name When I press the login button, I will be successfully forwarded to the identity provider, can login and will be redirected back to <domain>/server/api/authn/oidc?code=xxxx So the Switch Edu Id identity provider returns a GET-Param "code" that should indicate a successful login. Unfortunately I only get a 401 unauthorized error. As far as I know, this process should solely be handled by GET-Requests. Do you have any clue on which end something might be wrong as I have limited capabilities to check what is happening on the identity provider's end? When I turn on debugging in DSpace's configuration file, I only get a 401 warning. Maybe you can have a quick look at the documentation: https://www.switch.ch/edu-id/docs/services/openid-connect/ As a token endpoint method I use HTTP basic authentication. Thank you for your help and best regards Sammy -- All messages to this mailing list should adhere to the Code of Conduct: https://www.lyrasis.org/about/Pages/Code-of-Conduct.aspx --- You received this message because you are subscribed to the Google Groups "DSpace Technical Support" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/dspace-tech/91eaf02f-3ac4-4700-93aa-cfa958f0a676n%40googlegroups.com.
