OpenID Connect for W.I.S.V. 'Christiaan Huygens'.
OpenID Connect (OIDC) lets you log into a remote site or application using your identity without exposing your credentials. In addition, OIDC can provide this application with additional user information like full name or phone number. For W.I.S.V. 'Christiaan Huygens', this OIDC implementation is configured to allow login through TU Delft NetID (SAML) and CH Accounts (LDAP). Both login methods are linked to the Dienst2 member administration to verify identity. Dienst2 is also the source of any additional user information.
This code is hosted for production use at connect.ch.tudelft.nl. Developers can register their own applications by logging in there.
This project is a WAR overlay for MITREid Connect, which is included from Maven Central.
Configuration is done through a properties file; refer to
config/application-example.properties and make a copy as
config/application.properties. An HSQLDB instance will be launched with demo data; to log in, use
The servlet container can be configured with the following parameters:
-Dspring.config.location=$PROJECT_DIR$/config/application.properties -Dlog4j.configurationFile=$PROJECT_DIR$/config/log4j2-dev.xml -Djavax.net.ssl.trustStore=$PROJECT_DIR$/wisvch.truststore -Djavax.net.ssl.trustStorePassword=changeit
Configure the location of the properties file with
a JVM parameter. Spring profile
production is used in production; to enable, add
as a JVM parameter.
docker build .