I am using mod_auth_openidc as Resource Server. I want to configure OIDCClaimPrefix parameter as empty string, as I want to pass the claims received from OAuth server as it is(don't want any prefix with anything). I tried to keep OIDCClaimPrefix as empty but seems it expects 1 argument. How can I pass empty or blank prefix?
mod_auth_openidc How to configure empty OIDCClaimPrefix in mod_auth_openidc.conf
685 Views Asked by Shashank At
1
There are 1 best solutions below
Related Questions in OAUTH-2.0
- Not getting refresh token with google oauth2
- SoundCloud Authentication Consistently Returns 401 invalid_grant For Some Users
- How can I share Azure Active Directory authentication between server side and client script?
- OAuth2 and API Json request not working with jQuery Call
- Flask-Restful, oauth, and Salesforce
- Bearer token in MVC controller to access Web API
- Revoking OAuth tokens in Mule
- how to signup user using google-plus integradation in web?
- Need to run getAuthToken twice before receiving access token, why?
- chrome.identity.getAuthToken and refresh token?
- dropbox api authentication (Error: [400] 'invalid_client')
- Retrieve Google Sites's Domain Index feed using OAuth 2.0 with Service Account
- hello.js: Is it possible to set the provider's settings dynamically?
- How to share developer account at LinkedIn
- Linkedin Unsupported POST target
Related Questions in PINGFEDERATE
- SAML service provider signature verification
- IDP Initated logout in pingfederate
- environment specific variables in pingfederate templates
- mod_auth_openidc How to configure empty OIDCClaimPrefix in mod_auth_openidc.conf
- Multiple Adapters in Ping Federate
- HTMLform IDP adaptor log-out
- How to provide multiple search base in ping federate?
- PingFederate not modifying HTTP headers
- Ping Federate Clustering HA for Admin Console
- PingFederate is not sending back relayState in its response
- Keycloak IdP brokering to SAML 2.0 IdP providers (ping federate)
- Netsuite as an Identity Provider - Ping (SAML 2.0)
- SAML Provider/Implementations Compatible?
- Integrating locally installed PingFederate with Facebook
- In PingFed, how can I rebuild my setup on local so that my properties files that I have imported in take into effect?
Related Questions in MOD-AUTH-OPENIDC
- Windows Live Open ID Connect/Oauth 2.0 How to use for SSO with Apache mod_auth_openidc
- mod_auth_openidc How to configure empty OIDCClaimPrefix in mod_auth_openidc.conf
- keycloak with mod_auth_openidc advantages
- how to secure API with mod_auth_openidc
- Is there a way to bypass mod_auth_openidc module used in an Apache Web Server for some users/IP ranges/service-calls?
- mod_auth_openidc: Refresh token fails
- Redirect Loop while using Apache mod auth openidc module
- Can Google Identity Platform send claims tokens back to the server?
- keycloak, Apache, mod_auth_openidc, elasticsearch opendistro
- How can I rewrite a url to append a header with Apache
- Use mod_auth_openidc to connect to multiple clients with the same provider
- access-token claims not set apache openidc header (mod _auth_openidc)
- php subpage repeating in link
- Apache 2 cannot successfully load module?
- Azure AD "groups" claim not being passed to mod_auth_openidc
Trending Questions
- UIImageView Frame Doesn't Reflect Constraints
- Is it possible to use adb commands to click on a view by finding its ID?
- How to create a new web character symbol recognizable by html/javascript?
- Why isn't my CSS3 animation smooth in Google Chrome (but very smooth on other browsers)?
- Heap Gives Page Fault
- Connect ffmpeg to Visual Studio 2008
- Both Object- and ValueAnimator jumps when Duration is set above API LvL 24
- How to avoid default initialization of objects in std::vector?
- second argument of the command line arguments in a format other than char** argv or char* argv[]
- How to improve efficiency of algorithm which generates next lexicographic permutation?
- Navigating to the another actvity app getting crash in android
- How to read the particular message format in android and store in sqlite database?
- Resetting inventory status after order is cancelled
- Efficiently compute powers of X in SSE/AVX
- Insert into an external database using ajax and php : POST 500 (Internal Server Error)
Popular Questions
- How do I undo the most recent local commits in Git?
- How can I remove a specific item from an array in JavaScript?
- How do I delete a Git branch locally and remotely?
- Find all files containing a specific text (string) on Linux?
- How do I revert a Git repository to a previous commit?
- How do I create an HTML button that acts like a link?
- How do I check out a remote Git branch?
- How do I force "git pull" to overwrite local files?
- How do I list all files of a directory?
- How to check whether a string contains a substring in JavaScript?
- How do I redirect to another webpage?
- How can I iterate over rows in a Pandas DataFrame?
- How do I convert a String to an int in Java?
- Does Python have a string 'contains' substring method?
- How do I check if a string contains a specific word?
An empty prefix is currently not possible. You could use a space (" ") and assuming that your application code strips leading and trailing blanks, that may work for you.
Be aware that not adding a prefix makes it impossible to distinguish between headers that
mod_auth_openidcsets and headers that are passed in from the client (sincemod_auth_openidccleans any header with the prefix that comes directly from the client), so security-wise it would not make sense to allow an empty prefix.If you have a compelling case that does not render systems insecure you could add a feature request to the issue tracker on github.