An OpenID Connect client must be registrered with an authorization server, and a callback URL of $HOST/system/sling/oidc/callback registered. This is typically http://localhost:8080/system/sling/oidc/callback .
Validated providers:
A number of additional bundles need to be added to the Sling Starter.
diff --git a/src/main/features/app/starter.json b/src/main/features/app/starter.json index 9c9231f..18c1586 100644 --- a/src/main/features/app/starter.json +++ b/src/main/features/app/starter.json @@ -3,6 +3,34 @@ { "id":"org.apache.sling:org.apache.sling.starter.content:1.0.12", "start-order":"20" + }, + { + "id":"com.nimbusds:oauth2-oidc-sdk:9.35", + "start-order":"20" + }, + { + "id":"com.nimbusds:nimbus-jose-jwt:9.22", + "start-order":"20" + }, + { + "id":"com.nimbusds:content-type:2.2", + "start-order":"20" + }, + { + "id":"com.nimbusds:lang-tag:1.6", + "start-order":"20" + }, + { + "id":"org.apache.servicemix.bundles:org.apache.servicemix.bundles.jcip-annotations:1.0_2", + "start-order":"20" + }, + { + "id":"net.minidev:json-smart:2.4.8", + "start-order":"20" + }, + { + "id":"net.minidev:accessors-smart:2.4.8", + "start-order":"20" } ] }
After deploying the bundle using mvn package sling:install go to http://localhost:8080/system/console/configMgr and create a new configuration instance for OpenID Connect connection details.
Ensure you are logged in.
At this point you need to can navigate to /home/users/${USERNAME}/oidc-tokens/${CONNECTION_NAME} and you will see the stored token and expiry date (if available ).