MozDef OIDC Question


(Nikkeh) #1

Trying to spin up MozDef in AWS to take it for a spin, however i’ve hit a bit of a snag on what MozDef is expecting for the redirect URI from my OIDC setup. Also what underlying OIDC library is mozdef using? Tried to creep through the github for an answer and no luck. (but i probably overlooked it…)


(Gene Wood) #2

Trying to spin up MozDef in AWS to take it for a spin, however i’ve hit a bit of a snag on what MozDef is expecting for the redirect URI from my OIDC setup.

MozDef will ask the OIDC provider to send the user back to /redirect_uri which is set here

This is passed to the OIDC Proxy that runs in front of MozDef via an environment variable

Also what underlying OIDC library is mozdef using?

OIDC is terminated using our Nginx Lua OpenID Connect Access Proxy which in turn uses the lua-resty-openidc library. It’s reference here in the docker compose file