Configuration of custom CA-bundle for mod_auth_openidc module in Apache HTTPD
Issue
- How to configure custom ca-bundle for
mod_auth_openidc
module to trust internal CA ? - We are getting below errors when configuring internal CA for the
mod_auth_openidc
module.
[Mon Jul 20 2020] [auth_openidc:error] [client 10.10.10.10:65377] oidc_util_http_call: curl_easy_perform() failed on: https://example.com:8220/example/oauth2/access_token
(Peer's certificate issuer has been marked as not trusted by the user.), referer: https://example.com:8220/login
[Mon Jul 20 2020] [auth_openidc:warn] [client 10.10.10.10:65377] oidc_proto_token_endpoint_request: error when calling the token endpoint (https://example.com:8220/example/oauth2/access_token), referer:
https://example.com:8220/login
[Mon Jul 20 2020] [auth_openidc:error] [client 10.10.10.10:65377] oidc_proto_resolve_code_and_validate_response: failed to resolve the code, referer: https://example.com:8220/login
Environment
- Red Hat Enterprise Linux (RHEL)
- 7.x
- Apache HTTPD
- 2.4.x
- mod_auth_openidc
- libcurl
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.