First Last Prev Next    This bug is not in your last search results.
Bug 51189 - OpenID Connect: Failover
OpenID Connect: Failover
Status: NEW
Product: UCS
Classification: Unclassified
Component: OpenID Connect
UCS 4.4
Other Linux
: P5 normal with 2 votes (vote)
: ---
Assigned To: UCS maintainers
UCS maintainers
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2020-04-30 08:22 CEST by Erik Damrose
Modified: 2022-05-10 14:35 CEST (History)
4 users (show)

See Also:
What kind of report is it?: Feature Request
What type of bug is this?: ---
Who will be affected by this bug?: ---
How will those affected feel about the bug?: ---
User Pain:
Enterprise Customer affected?: Yes
School Customer affected?: Yes
ISV affected?:
Waiting Support:
Flags outvoted (downgraded) after PO Review:
Ticket number: 2022051021000221
Bug group (optional):
Max CVSS v3 score:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Erik Damrose univentionstaff 2020-04-30 08:22:13 CEST 
The OpenID Connect app base software Kopano konnect does support failover, when the encryption keys are identical in any running instance.

The App could search for and copy the keys from existing installations in the domain.

It would also improve the useability to store OIDC IdP information such as the fqdn (konnect --iss parameter) in LDAP. Currently, that settings has to be configured for every installed app via app settings.
Comment 1 Christian K univentionstaff 2022-01-04 05:43:09 CET 
The loadbalancers must also be configured for a standby- only scenario. This is because temporary data is not being synched between the instances.
Hence, in addition to syncronize the keys ensure the relevant routes are routed to only one server, and only in case of a failure to another one: 
/.well-known/openid-configuration
/konnect/v1
/signin
Comment 2 Dirk Schnick univentionstaff 2022-05-10 14:02:40 CEST 
Another customer asks for the feature. Ticketnumber attached
First Last Prev Next    This bug is not in your last search results.