Forum Discussion
Olivier_Beytrison
Cirrus
CirrusAllowing JNLP access to an application protected by APM/Oauth2
In order to protect a critical application (Oracle EBS), we went the AzureAD/OAuth2 pre-authentication way. This mean that the users needs to have a valid M365 session in their browser to reach the ...
423685
Nimbostratus
Nimbostratusone possible solution to the issue you're facing is to use a reverse proxy or application gateway that can handle the authentication and forwarding of requests to the Oracle EBS application server. This allows you to establish a secure connection between the client and the reverse proxy, while the proxy handles the authentication and forwards the requests to the application server.
Here's a high-level overview of how this solution could work:
-
Set up a reverse proxy or application gateway (e.g., Nginx, Apache HTTP Server, Azure Application Gateway) in front of the Oracle EBS application server.
-
Configure the reverse proxy to handle the authentication part using Azure AD and OAuth2. This typically involves configuring the proxy to validate the OAuth2 access tokens or session cookies from the M365 session.
-
When a client tries to access the Oracle EBS application through the JNLP, they will be redirected to the reverse proxy for authentication.
-
Once the client's M365 session is validated and authenticated, the reverse proxy can create a separate session or token specific to the Oracle EBS application.
-
The reverse proxy then forwards the requests from the client to the Oracle EBS application server, including the necessary authentication information (e.g., session token) required by the Java applications in the JNLP.
(Edited by Leslie Hubertus to remove spam link)