<html>
  <head>
    <meta content="text/html; charset=windows-1252"
      http-equiv="Content-Type">
  </head>
  <body bgcolor="#FFFFFF" text="#000000">
    <p>This isn't possible in our codebase. <br>
    </p>
    <p><br>
    </p>
    <p> -- Justin<br>
    </p>
    <br>
    <div class="moz-cite-prefix">On 9/10/2016 3:44 AM, Michael Furman
      wrote:<br>
    </div>
    <blockquote
cite="mid:AM5PR0701MB25301E33619E0BA4248ACD1DF4FD0@AM5PR0701MB2530.eurprd07.prod.outlook.com"
      type="cite">
      <meta http-equiv="Content-Type" content="text/html;
        charset=windows-1252">
      <style type="text/css" style="display:none;"><!-- P {margin-top:0;margin-bottom:0;} --></style>
      <div id="divtagdefaultwrapper"
style="font-size:12pt;color:#000000;background-color:#FFFFFF;font-family:Calibri,Arial,Helvetica,sans-serif;">
        <pre>Hi all,</pre>
        <pre>I want to deploy IDP and RP on the same server in the production. </pre>
        <pre>Therefore I want RP will access to IDP endpoints via HTTP.</pre>
        <pre>It mean the front channel will be via HTTPS and back channel with HTTP.</pre>
        <pre>How it is possible?</pre>
        <p class="MsoNormal"> </p>
        <p class="MsoNormal">I have configured the HTTPS issuer on the
          IDP site:</p>
        <p class="MsoNormal"><br>
        </p>
        <p class="MsoNormal"><i>&lt;property name="issuer"
            value="<a class="moz-txt-link-freetext" href="https://">https://</a>&lt;...&gt;/openid-connect-server-webapp/"
            /&gt;</i></p>
        <p class="MsoNormal"><br>
        </p>
        <p class="MsoNormal">I have configured the following on RP:</p>
        <p class="MsoNormal"><br>
        </p>
        <p class="MsoNormal"><i>&lt;bean
class="org.mitre.openid.connect.client.service.impl.StaticServerConfigurationService"&gt;</i></p>
        <p class="MsoNormal"><i>&lt;property name="servers"&gt;</i></p>
        <p class="MsoNormal"><i>&lt;map&gt;</i></p>
        <p class="MsoNormal"><i>&lt;entry
            key="<a class="moz-txt-link-freetext" href="https://">https://</a>&lt;...&gt;/openid-connect-server-webapp/"&gt;</i></p>
        <p class="MsoNormal"><i><span style="mso-tab-count:1">               
            </span>&lt;bean
            class="org.mitre.openid.connect.config.ServerConfiguration"&gt;</i></p>
        <p class="MsoNormal"><i><span style="mso-tab-count:2">                               
            </span>&lt;property name="issuer"
            value="<a class="moz-txt-link-freetext" href="https://">https://</a>&lt;...&gt;/openid-connect-server-webapp/"
            /&gt;</i></p>
        <p class="MsoNormal"><i><span style="mso-tab-count:2">                               
            </span>&lt;property name="authorizationEndpointUri"<span
              style="mso-tab-count:1">    
            </span>value="<a class="moz-txt-link-freetext" href="http://">http://</a>&lt;...&gt;:8088/openid-connect-server-webapp/authorize"
            /&gt;</i></p>
        <p class="MsoNormal"><i><span style="mso-tab-count:2">                               
            </span>&lt;property name="tokenEndpointUri"<span
              style="mso-tab-count:1">    </span>
value="<a class="moz-txt-link-freetext" href="http://">http://</a>&lt;...&gt;:8088/openid-connect-server-webapp/token" /&gt;</i></p>
        <p class="MsoNormal"><i><span style="mso-tab-count:2">                               
            </span>&lt;property name="userInfoUri"
            value="<a class="moz-txt-link-freetext" href="http://">http://</a>&lt;...&gt;:8088/openid-connect-server-webapp/userinfo"
            /&gt;</i></p>
        <p class="MsoNormal"><i><span style="mso-tab-count:2">                               
            </span>&lt;property name="jwksUri"
            value="<a class="moz-txt-link-freetext" href="http://">http://</a>&lt;...&gt;:8088/openid-connect-server-webapp/jwk"
            /&gt;</i></p>
        <p class="MsoNormal"><i><span style="mso-tab-count:1">               
            </span>&lt;/bean&gt;</i></p>
        <p class="MsoNormal"><i>&lt;/entry&gt;</i></p>
        <p class="MsoNormal"><i>&lt;/map&gt;</i></p>
        <p class="MsoNormal"><i>&lt;/property&gt;</i></p>
        <p class="MsoNormal"><i>&lt;/bean&gt;</i></p>
        <p class="MsoNormal">Somehow the RP<span
            style="mso-spacerun:yes">  </span>
          switch to use HTTPS:</p>
        <p class="MsoNormal"><br>
        </p>
        <p class="MsoNormal"><i>WARN :
            org.mitre.openid.connect.client.service.impl.WebfingerIssuerService
            - Returning normalized input string as issuer, hoping for
            the best: <a class="moz-txt-link-freetext" href="https://">https://</a>&lt;...&gt;/openid-connect-server-webapp/</i></p>
        <p class="MsoNormal"><i>WARN :
org.mitre.openid.connect.client.service.impl.DynamicServerConfigurationService
            - Couldn't load configuration for
            <a class="moz-txt-link-freetext" href="https://">https://</a>&lt;...&gt;/openid-connect-server-webapp/:
          </i></p>
        <p class="MsoNormal"><br>
        </p>
        <p class="MsoNormal">Thank you in advance for your help.</p>
        <p class="MsoNormal">Best regards,</p>
        <pre><span style="mso-spacerun:yes">   </span>Michael</pre>
        <pre> </pre>
        <br>
      </div>
      <br>
      <fieldset class="mimeAttachmentHeader"></fieldset>
      <br>
      <pre wrap="">_______________________________________________
mitreid-connect mailing list
<a class="moz-txt-link-abbreviated" href="mailto:mitreid-connect@mit.edu">mitreid-connect@mit.edu</a>
<a class="moz-txt-link-freetext" href="http://mailman.mit.edu/mailman/listinfo/mitreid-connect">http://mailman.mit.edu/mailman/listinfo/mitreid-connect</a>
</pre>
    </blockquote>
    <br>
  </body>
</html>