using this module with Google. #1341
Replies: 1 comment
-
|
see the release notes for 2.4.17.2 |
Beta Was this translation helpful? Give feedback.
0 replies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Uh oh!
There was an error while loading. Please reload this page.
-
I am trying to use this module with Google to see if I can use Google logins for my family website. I obviously don't want everyone logging in - just the family members using their Google a/c. Here is the relevant config from httpd.conf.
OIDCProviderMetadataURL https://accounts.google.com/.well-known/openid-configuration
OIDCClientID XXX
OIDCClientSecret XXX
OIDCRemoteUserClaim email
OIDCScope "email profile openid"
OIDCProviderAuthRequestMethod POST
OIDCSessionInactivityTimeout 14400
OIDCSessionMaxDuration 28800
OIDCRedirectURI https://XXX.xx/oidc/protected/
OIDCCryptoPassphrase XXX
OIDCDefaultLoggedOutURL https://XXX.xx/public/login.php
OIDCOAuthRemoteUserClaim email
..
..
<Location "/oidc/">
AuthType openid-connect
Require valid-user
Require claim email:myemailaddress@gmail.com
#AuthGroupFile "/some/path/htgroup"
#Require group family
It works but ONLY when I enable "Require valid-user" in Location tab. If I take that out and replace it with Require claim:emailaddress@gmail.com, it does not work. As you can see from commented out lines, I also tried a simple htgroup file but that didn't work either.
Any ideas? I don't want to do this in code, I want this module to provide that functionality if possible. Thanks.
Beta Was this translation helpful? Give feedback.
All reactions