Hi, didn’t found the answer on google, maybe someone here is smarter
I’m using the social login app, it works great in my dev environment.
However on the homologation platform, Nextcloud and the OpenID Connect Provider (keycloak for me) must communicate through a corporate proxy.
ask netxcloud to use the Corporate proxy (the environement variable are set, but not used)
ask the social login app to do an implicit flow instead of an authorization code flow
in the implicit flow, the connection from the Relying party (Nextcloud here) to the OIDC Provider is not mandatory. The get user info won’t work thow.
Something i didn’t thought of ?
I might be able to contact the OIDC Provider, but not using the standard reverse proxy (and therefore the correct certificate), is there a way to ask this social login module to do the code flow even if the certificate does not match the hostname ? (just thought of this one, i’ll need some time to test it)
For information, it’s a nextcloud 13, and a keycloak 4.X
Both running on Docker / Openshift
Thanks for any help