This is an automated email from the ASF dual-hosted git repository. btellier pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/james-project.git
commit 0e78452ba3f915bee4f4b8829b8238147e8ddad4 Author: Felix Auringer <[email protected]> AuthorDate: Mon Sep 8 14:08:51 2025 +0200 fix(examples): fix introspection mismatching issuer error --- examples/oidc/docker-compose.yml | 6 +++--- examples/oidc/james/imapserver.xml | 12 +++--------- examples/oidc/james/smtpserver.xml | 15 +++------------ 3 files changed, 9 insertions(+), 24 deletions(-) diff --git a/examples/oidc/docker-compose.yml b/examples/oidc/docker-compose.yml index a27f1ff294..65659d06f4 100644 --- a/examples/oidc/docker-compose.yml +++ b/examples/oidc/docker-compose.yml @@ -27,6 +27,8 @@ services: volumes: - ./james/usersrepository.xml:/root/conf/usersrepository.xml - ./james/jmap.properties:/root/conf/jmap.properties + - ./james/imapserver.xml:/root/conf/imapserver.xml + - ./james/smtpserver.xml:/root/conf/smtpserver.xml ports: - "8000:8000" healthcheck: @@ -46,9 +48,7 @@ services: - KEYCLOAK_PASSWORD=admin - KEYCLOAK_IMPORT=/tmp/realm-oidc.json networks: - james: - aliases: - - keycloak + - james ldap: container_name: ldap diff --git a/examples/oidc/james/imapserver.xml b/examples/oidc/james/imapserver.xml index e590c7dd5e..641f6c5067 100644 --- a/examples/oidc/james/imapserver.xml +++ b/examples/oidc/james/imapserver.xml @@ -4,12 +4,6 @@ <jmxName>imapserver</jmxName> <bind>0.0.0.0:143</bind> <connectionBacklog>200</connectionBacklog> - <tls socketTLS="false" startTLS="false"> - <keystore>file://conf/keystore</keystore> - <keystoreType>PKCS12</keystoreType> - <secret>james72laBalle</secret> - <provider>org.bouncycastle.jce.provider.BouncyCastleProvider</provider> - </tls> <connectionLimit>0</connectionLimit> <connectionLimitPerIP>0</connectionLimitPerIP> <idleTimeInterval>120</idleTimeInterval> @@ -18,12 +12,12 @@ <auth> <plainAuthEnabled>true</plainAuthEnabled> <oidc> - <oidcConfigurationURL>http://keycloak:8080/auth/realms/oidc/.well-known/openid-configuration</oidcConfigurationURL> - <jwksURL>http://keycloak:8080/auth/realms/oidc/protocol/openid-connect/certs</jwksURL> + <oidcConfigurationURL>http://sso.example.com:8080/auth/realms/oidc/.well-known/openid-configuration</oidcConfigurationURL> + <jwksURL>http://sso.example.com:8080/auth/realms/oidc/protocol/openid-connect/certs</jwksURL> <claim>email</claim> <scope>openid profile email</scope> <introspection> - <url>http://keycloak:8080/auth/realms/oidc/protocol/openid-connect/token/introspect</url> + <url>http://sso.example.com:8080/auth/realms/oidc/protocol/openid-connect/token/introspect</url> <auth>Basic amFtZXMtdGh1bmRlcmJpcmQ6WHc5aHQxdmVUdTBUazVzTU15MDNQZHpZM0FpRnZzc3c=</auth> </introspection> </oidc> diff --git a/examples/oidc/james/smtpserver.xml b/examples/oidc/james/smtpserver.xml index 6af07c4554..e4f3655157 100644 --- a/examples/oidc/james/smtpserver.xml +++ b/examples/oidc/james/smtpserver.xml @@ -4,13 +4,6 @@ <jmxName>smtpserver</jmxName> <bind>0.0.0.0:587</bind> <connectionBacklog>200</connectionBacklog> - <tls socketTLS="false" startTLS="false"> - <keystore>file://conf/keystore</keystore> - <keystoreType>PKCS12</keystoreType> - <secret>james72laBalle</secret> - <provider>org.bouncycastle.jce.provider.BouncyCastleProvider</provider> - <algorithm>SunX509</algorithm> - </tls> <connectiontimeout>360</connectiontimeout> <connectionLimit>0</connectionLimit> <connectionLimitPerIP>0</connectionLimitPerIP> @@ -18,12 +11,12 @@ <announce>forUnauthorizedAddresses</announce> <plainAuthEnabled>true</plainAuthEnabled> <oidc> - <oidcConfigurationURL>http://keycloak:8080/auth/realms/oidc/.well-known/openid-configuration</oidcConfigurationURL> - <jwksURL>http://keycloak:8080/auth/realms/oidc/protocol/openid-connect/certs</jwksURL> + <oidcConfigurationURL>http://sso.example.com:8080/auth/realms/oidc/.well-known/openid-configuration</oidcConfigurationURL> + <jwksURL>http://sso.example.com:8080/auth/realms/oidc/protocol/openid-connect/certs</jwksURL> <claim>email</claim> <scope>openid profile email</scope> <introspection> - <url>http://keycloak:8080/auth/realms/oidc/protocol/openid-connect/token/introspect</url> + <url>http://sso.example.com:8080/auth/realms/oidc/protocol/openid-connect/token/introspect</url> <auth>Basic amFtZXMtdGh1bmRlcmJpcmQ6WHc5aHQxdmVUdTBUazVzTU15MDNQZHpZM0FpRnZzc3c=</auth> </introspection> </oidc> @@ -39,5 +32,3 @@ </handlerchain> </smtpserver> </smtpservers> - - --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
