Activate OAuth2 login - LucyAuth.cfg
So that it is possible to log in to Intrexx portals via ID providers, you need to activate the "IntrexxOAuth2" module. This is done in the file LucyAuth.cfg.
You can find this file in the Intrexx directory structure under the following path:
<portal directory>/internal/cfg/LucyAuth.cfg
|
Add the following block to the file LucyAuth.cfg.:
IntrexxOAuth2
{
de.uplanet.lucy.server.auth.module.intrexx.IntrexxOAuth2LoginModule sufficient
debug=false;
de.uplanet.lucy.server.auth.module.intrexx.IntrexxLoginModule sufficient
de.uplanet.auth.allowEmptyPassword=true
debug=true;
de.uplanet.lucy.server.auth.module.anonymous.AnonymousLoginModule sufficient
debug=true;
};
The full file could then look something like this:
Unprivileged
{
de.uplanet.lucy.server.auth.module.unprivileged.UnprivilegedLoginModule required
debug=false;
};
TrustedAuth
{
de.uplanet.lucy.server.auth.module.trusted.TrustedLoginModule required
debug=false;
};
IntrexxAuth
{
de.uplanet.lucy.server.auth.module.intrexx.IntrexxLoginModule sufficient
de.uplanet.auth.allowEmptyPassword=true
debug=false;
de.uplanet.lucy.server.auth.module.anonymous.AnonymousLoginModule sufficient
debug=false;
};
IntegratedAuth
{
de.uplanet.lucy.server.auth.module.integrated.IntegratedLoginModule required
debug=false;
};
IntegratedAuthClient
{
de.uplanet.lucy.server.auth.module.integrated.ClientIntegratedLoginModule sufficient
debug=false;
de.uplanet.lucy.server.auth.module.anonymous.AnonymousLoginModule sufficient
debug=false;
};
KerberosAuth
{
de.uplanet.lucy.server.auth.module.external.ExternalAuthenticationLoginModule required
// de.uplanet.auth.fixedLoginDomain="example.domain"
// de.uplanet.auth.userMappingScript="internal/cfg/userMapping.groovy"
debug=false;
};
NTLMAuthClient
{
de.uplanet.lucy.server.auth.module.integrated.ClientNtlmLoginModule sufficient
debug=false;
de.uplanet.lucy.server.auth.module.anonymous.AnonymousLoginModule sufficient
debug=false;
};
LDAPAuth
{
de.uplanet.lucy.server.auth.module.ldap.LdapBindLoginModule sufficient
java.naming.provider.url="ldap://localhost:389"
java.naming.security.authentication="simple"
java.naming.security.principal="$[DN]"
debug=false;
de.uplanet.lucy.server.auth.module.anonymous.AnonymousLoginModule sufficient
debug=false;
};
GenericAuth
{
de.uplanet.lucy.server.auth.module.ldap.LdapBindLoginModule sufficient
java.naming.provider.url="ldap://localhost:389"
java.naming.security.authentication="simple"
java.naming.security.principal="$[DN]"
debug=false;
de.uplanet.lucy.server.auth.module.anonymous.AnonymousLoginModule sufficient
debug=false;
};
ODataAuth
{
de.uplanet.lucy.server.auth.module.intrexx.IntrexxLoginModule sufficient
de.uplanet.auth.allowEmptyPassword=true
debug=false;
de.uplanet.lucy.server.auth.module.anonymous.AnonymousLoginModule sufficient
debug=false;
};
IntrexxOAuth2
{
de.uplanet.lucy.server.auth.module.intrexx.IntrexxOAuth2LoginModule sufficient
debug=false;
de.uplanet.lucy.server.auth.module.intrexx.IntrexxLoginModule sufficient
de.uplanet.auth.allowEmptyPassword=true
debug=true;
de.uplanet.lucy.server.auth.module.anonymous.AnonymousLoginModule sufficient
debug=true;
};