Dear community,
I'm failing to get OAuth 2.0 authentication to work as explained in the lab blog post: Stardog OAuth 2.0 Configuration.
Instead of Google I'm using Azure AD.
I made the settings as mentioned in the blog post.
However, my bearer token is not accepted. For any HTTP API request using 'Authorization: Bearer' header Stardog server responds with HTTP error '401 Unauthorized'.
Also in the response I see a 'Www-Authenticate' HTTP header which has the value 'Basic realm="Stardog"', which makes me wonder if Stardog server even recognizes that I'm trying to do a bearer token authentication. Shouldn't the value be something like 'api-token-realm'.
In stardog.log ans access.log my authentication requests are not even logged. So I'm puzzled what I'm doing wrong.
Any help is much appreciated.
Thanks,
Roberto
My server version: 7.7.2
My stardog.properties:
security.realms=stardog,api-token-realm
jwt.conf=/var/opt/stardog/jwt.yaml
sql.server.enabled=true
logging.access.enabled=true
logging.access.type=text
My /var/opt/stardog/jwt.yaml (I obfuscated the tenant):
confVersion: "1.0"
deploymentName: stardog-server
issuers:
https://login.microsoftonline.com/<tenant>/v2.0:
usernameField: oid
algorithms:
RS256:
keyUrl: https://login.microsoftonline.com/<tenant>/discovery/v2.0/keys