Please complete the details below then remove this line:
Domino/Notes Version:14.5FP1
Add-on Product (if appropriate, e.g. Verse / Traveler / Nomad / Domino REST API):REST API
Its Version:1.1.6
Operating System:linux
Client (Notes, Nomad Web, Nomad Mobile, Android/iOS, browser version):
Problem/Query:
Hi everybody,
is it possible to use the JWT token created by the authentication REST API (/api/v1/auth) to log into a web site in the same domain as REST API server?
In the internet site document, Security section there is a radio button “Bearer token (JWT)” but the help says:
“If enabled requires additional Domino configuration ti specify the base URL of an OIDC-compliant identity provider”
while we don’t have any identity provider more than Domino itself.
thanks a lot
tommaso
Hi Tommaso,
Good day!
Regarding your inquiry, could you please confirm whether, by “REST API Server,” you are referring to DRAPI?
If so, are you currently using this feature?
**Configure Domino REST API to use an OIDC provider
Thank you.
Best regards,
Kaycery
HCL Domino Support
Hi Kaycery,
yes we are using Domino REST API but we don’t have any external IdP neither OIDC.
I think we don’t need them. Our application will have few users all registered as person in the Domino Domain.
Thanks
tommaso
If you want to use the same JWT token for Domino nhttp server (traditional Domino web, XPages etc) and Domino REST API, you need to configure it on Domino in Domino directory and reuse that for Domino REST API.
Domino REST API’s use of JWT tokens was available from the start, when Domino REST API was first available for Domino 12.0.2. I believe Domino added its own JWT authentication in Domino 14.
I don’t have a link to documentation, hopefully you can find it in the documentation or someone from the community has expertise on this.
Perhaps this might help from the 14.5 help
Using Domino as an OIDC provider
/Fredrik