Have you checked - th-cam.com/video/8Xvlubinftk/w-d-xo.html What are you looking for with jwt token and aws ALB? Is your expectation to use AWS ALB to authenticate user with OIDC and then pass JWT tokens (access tokens and claims) to the backend application to validate claims and signature.
callback url can be anything where authorization code will be sent. If AWS ALB is used for authentication of user then this callback url should be something like /oauth2/idpresponse. In my case I have created a CNAME record test.raaviblog.com pointing to DNS of ALB. That is why it looks like test.raaviblog.com/oauth2/idpresponse. You can check more details here - docs.aws.amazon.com/elasticloadbalancing/latest/application/listener-authenticate-users.html
If there is no user present in AZ AD, is there a way I can prompt for register user or guest user login such that user is created in AZ AD? If so, should we create a custom component that should be hosted on AWS or is there any other way to achieve this?
Sir, Can you please make a video, How to implement JWT token for our secure load balancer
sure...very soon I will make on this.
Have you checked - th-cam.com/video/8Xvlubinftk/w-d-xo.html
What are you looking for with jwt token and aws ALB? Is your expectation to use AWS ALB to authenticate user with OIDC and then pass JWT tokens (access tokens and claims) to the backend application to validate claims and signature.
do you have terraform script to perform the same ?
great video. At 9:39, where does the callback URLs come from?
callback url can be anything where authorization code will be sent. If AWS ALB is used for authentication of user then this callback url should be something like /oauth2/idpresponse. In my case I have created a CNAME record test.raaviblog.com pointing to DNS of ALB. That is why it looks like test.raaviblog.com/oauth2/idpresponse. You can check more details here - docs.aws.amazon.com/elasticloadbalancing/latest/application/listener-authenticate-users.html
If there is no user present in AZ AD, is there a way I can prompt for register user or guest user login such that user is created in AZ AD?
If so, should we create a custom component that should be hosted on AWS or is there any other way to achieve this?