Howto test if my browser is already authenticated with JAS (Jazz Authorisation Server)
Hello,
is ther any URL provided by JAS server, which returns me if I'm already authenticated or not?
E.g I would like to send a http message to an URL with my SSO tokens, and if I'm already good, it should return a Code 200 and if not a 401.
Or instead a 401, a 302 to the login Form.
Which URL can I use for this with JAS?
I need this for a nginx reverse proxy with auth_request directive as gatekeeper.
regards
Guido
One answer
Hi Guido
I am not sure if this would work for you, but as a workaround you could deploy the snoop application on JAS (Liberty Profile) and access https://jas_server:9643/snoop and check what it returns.
I deployed snoop and tried a quick test. It returns 401 when the browser is not authenticated through oidc and 200 when it has already authenticated.
Regards
Shubjit
Comments
Ulf Arne Bister
Jan 16 '18, 3:56 a.m.Excellent question. Given extra cycles I will dig into the latest Eclipse Lyo code to see how they handle authentication against JAS. Maybe there is a hint as to that URL.