Allowing JNLP access to an application protected by APM/Oauth2
In order to protect a critical application (Oracle EBS), we went the AzureAD/OAuth2 pre-authentication way.
This mean that the users needs to have a valid M365 session in their browser to reach the application. They can then log in (again) and use the application.
The issue I'm facing is that Oracle EBS makes a large usage of java applications through JNLP. Once you download and launch the jnlp, the application doesn't start, because it cannot reach the application endpoint. This is caused by java not having the "oauth session" needed to access the application. the java application is actually redirected to the Microsoft login page. (The web-base application use the same url as the java applications. both uses for example https://my-ebs-app.organization.com/)
So I need a form of "App Tunnel" or ACL to allow thos JNLP to actually reach the application server for the users who have a valid oauth2 session.
Any Idea on a solution to this issue ?