
<html>

  <head>

    <meta content="text/html; charset=windows-1252"

      http-equiv="Content-Type">

  </head>

  <body bgcolor="#FFFFFF" text="#000000">

    <p>This isn't possible in our codebase. <br>

    </p>

    <p><br>

    </p>

    <p> -- Justin<br>

    </p>

    <br>

    <div class="moz-cite-prefix">On 9/10/2016 3:44 AM, Michael Furman

      wrote:<br>

    </div>

    <blockquote

cite="mid:AM5PR0701MB25301E33619E0BA4248ACD1DF4FD0@AM5PR0701MB2530.eurprd07.prod.outlook.com"

      type="cite">

      <meta http-equiv="Content-Type" content="text/html;

        charset=windows-1252">

      <style type="text/css" style="display:none;"><!-- P {margin-top:0;margin-bottom:0;} --></style>

      <div id="divtagdefaultwrapper"

style="font-size:12pt;color:#000000;background-color:#FFFFFF;font-family:Calibri,Arial,Helvetica,sans-serif;">

        <pre>Hi all,</pre>

        <pre>I want to deploy IDP and RP on the same server in the production. </pre>

        <pre>Therefore I want RP will access to IDP endpoints via HTTP.</pre>

        <pre>It mean the front channel will be via HTTPS and back channel with HTTP.</pre>

        <pre>How it is possible?</pre>

        <p class="MsoNormal"> </p>

        <p class="MsoNormal">I have configured the HTTPS issuer on the

          IDP site:</p>

        <p class="MsoNormal"><br>

        </p>

        <p class="MsoNormal"><i>&lt;property name="issuer"

            value="<a class="moz-txt-link-freetext" href="https://">https://</a>&lt;...&gt;/openid-connect-server-webapp/"

            /&gt;</i></p>

        <p class="MsoNormal"><br>

        </p>

        <p class="MsoNormal">I have configured the following on RP:</p>

        <p class="MsoNormal"><br>

        </p>

        <p class="MsoNormal"><i>&lt;bean

class="org.mitre.openid.connect.client.service.impl.StaticServerConfigurationService"&gt;</i></p>

        <p class="MsoNormal"><i>&lt;property name="servers"&gt;</i></p>

        <p class="MsoNormal"><i>&lt;map&gt;</i></p>

        <p class="MsoNormal"><i>&lt;entry

            key="<a class="moz-txt-link-freetext" href="https://">https://</a>&lt;...&gt;/openid-connect-server-webapp/"&gt;</i></p>

        <p class="MsoNormal"><i><span style="mso-tab-count:1">               

            </span>&lt;bean

            class="org.mitre.openid.connect.config.ServerConfiguration"&gt;</i></p>

        <p class="MsoNormal"><i><span style="mso-tab-count:2">                               

            </span>&lt;property name="issuer"

            value="<a class="moz-txt-link-freetext" href="https://">https://</a>&lt;...&gt;/openid-connect-server-webapp/"

            /&gt;</i></p>

        <p class="MsoNormal"><i><span style="mso-tab-count:2">                               

            </span>&lt;property name="authorizationEndpointUri"<span

              style="mso-tab-count:1">    

            </span>value="<a class="moz-txt-link-freetext" href="http://">http://</a>&lt;...&gt;:8088/openid-connect-server-webapp/authorize"

            /&gt;</i></p>

        <p class="MsoNormal"><i><span style="mso-tab-count:2">                               

            </span>&lt;property name="tokenEndpointUri"<span

              style="mso-tab-count:1">    </span>

value="<a class="moz-txt-link-freetext" href="http://">http://</a>&lt;...&gt;:8088/openid-connect-server-webapp/token" /&gt;</i></p>

        <p class="MsoNormal"><i><span style="mso-tab-count:2">                               

            </span>&lt;property name="userInfoUri"

            value="<a class="moz-txt-link-freetext" href="http://">http://</a>&lt;...&gt;:8088/openid-connect-server-webapp/userinfo"

            /&gt;</i></p>

        <p class="MsoNormal"><i><span style="mso-tab-count:2">                               

            </span>&lt;property name="jwksUri"

            value="<a class="moz-txt-link-freetext" href="http://">http://</a>&lt;...&gt;:8088/openid-connect-server-webapp/jwk"

            /&gt;</i></p>

        <p class="MsoNormal"><i><span style="mso-tab-count:1">               

            </span>&lt;/bean&gt;</i></p>

        <p class="MsoNormal"><i>&lt;/entry&gt;</i></p>

        <p class="MsoNormal"><i>&lt;/map&gt;</i></p>

        <p class="MsoNormal"><i>&lt;/property&gt;</i></p>

        <p class="MsoNormal"><i>&lt;/bean&gt;</i></p>

        <p class="MsoNormal">Somehow the RP<span

            style="mso-spacerun:yes">  </span>

          switch to use HTTPS:</p>

        <p class="MsoNormal"><br>

        </p>

        <p class="MsoNormal"><i>WARN :

            org.mitre.openid.connect.client.service.impl.WebfingerIssuerService

            - Returning normalized input string as issuer, hoping for

            the best: <a class="moz-txt-link-freetext" href="https://">https://</a>&lt;...&gt;/openid-connect-server-webapp/</i></p>

        <p class="MsoNormal"><i>WARN :

org.mitre.openid.connect.client.service.impl.DynamicServerConfigurationService

            - Couldn't load configuration for

            <a class="moz-txt-link-freetext" href="https://">https://</a>&lt;...&gt;/openid-connect-server-webapp/:

          </i></p>

        <p class="MsoNormal"><br>

        </p>

        <p class="MsoNormal">Thank you in advance for your help.</p>

        <p class="MsoNormal">Best regards,</p>

        <pre><span style="mso-spacerun:yes">   </span>Michael</pre>

        <pre> </pre>

        <br>

      </div>

      <br>

      <fieldset class="mimeAttachmentHeader"></fieldset>

      <br>

      <pre wrap="">_______________________________________________

mitreid-connect mailing list

<a class="moz-txt-link-abbreviated" href="mailto:mitreid-connect@mit.edu">mitreid-connect@mit.edu</a>

<a class="moz-txt-link-freetext" href="http://mailman.mit.edu/mailman/listinfo/mitreid-connect">http://mailman.mit.edu/mailman/listinfo/mitreid-connect</a>

</pre>

    </blockquote>

    <br>

  </body>

</html>