Hi Boris, I would go for pac4j-oidc. It does not provide Wicket integration out of the box, but it is very easy to setup and you only need a few lines of code to check the authentication. Perhaps @dashorst can share the code: https://twitter.com/dashorst/status/1111280001847054336
You can find an example of the pac4j code in a presentation a gave some time ago: https://blog.topicus-keyhub.com/oauth-2-0-demystified-j-spring-2019/ Best regards, Emond On Tue, Jan 18, 2022 at 11:39 PM Boris Goldowsky <bgoldow...@cast.org> wrote: > What is the current best practice for allowing users to sign in to a > Wicket application using an OAuth2 provider (eg Google account, Twitter, > Canvas, etc). > > * Is Apache Shiro a possibility? Looks like it’s got some Wicket > integration, but OAuth2 is listed as “coming”. > * PicketLink? > * Something from https://oauth.net/code/java/ ? > > Anyone with a working implementation care to give some pointers? > > Looks like there may have been some discussion of this 10 years ago on > this list, but not more recently that I can find. > > Thank you! > > Boris > >
