Configuring an HTTP server to use Liberty as OpenID Connect Provider

Say you're building a static website with content that users must log in to view and you host the site on an Apache server. Instead of managing the authentications yourself, you can use the Apache module <code>mod_auth_openidc</code> to authenticate and authorize users against an OpenID Connect Provider hosted by WebSphere Liberty. Continue reading Configuring an HTTP server to use Liberty as OpenID Connect Provider

Filed under: security

Using SSL Certificate Authentication with batchManager on WAS Liberty

Liberty's batchManager command-line utility authenticates with the batch REST API using either HTTP Basic Authentication or SSL Certificate Authentication. HTTP Basic Authentication requires the user to provide a username and password in plain text, which may be a security concern. This tutorial describes how to use SSL Certificate Authentication instead, which avoids the use of passwords altogether. Continue reading Using SSL Certificate Authentication with batchManager on WAS Liberty

Filed under: security

How to learn and use WAS Liberty OpenID Connect

OpenID Connect (OIDC) is the new Internet Single Sign-on (SSO) protocol based on OAuth 2.0 specifications. Using OIDC, a client can request the user’s identity as an ID token in a standardized REST-like manner, and it can use the access token to access protected REST-like Services. This article discusses some advanced use scenarios and tips, and lists some resources for further reading on Liberty OpenID Connect. Continue reading How to learn and use WAS Liberty OpenID Connect

Filed under: java-ee, security