Hello
> -----Ursprüngliche Nachricht----- > Von: Kevin Edward <kevin7edw...@gmail.com> > Gesendet: Freitag, 7. April 2023 14:26 > An: users@tomcat.apache.org > Betreff: Tomcat needs an authenticator valve for OpenID/MSAL! > > Tomcat community, > > We have been using keycloak tomcat valves for SAML, but now we are > moving to OpenID. > > Who in the tomcat community can create/support a tomcat authenticator > valve using the MSAL library? > > I have the example authentication servlet working for MSAL below. Seems it > could be easily converted to a tomcat authenticator valve: > > https://github.com/Azure-Samples/ms-identity-msal-java- > samples/tree/main/3.%20Java%20Servlet%20Web%20App%20Tutorial/1- > Authentication/sign-in > > Thank you for any and all help! > K [>] Instead of using a valve, I have had good experiences with Open ID Connect and JASPIC. Here is an example: https://tomcat.apache.org/tomcat-9.0-doc/config/jaspic.html#Philip_Green_II's_module_for_Google_OAuth_2 When using JASPIC you can use the tomcat mechanisms for authentication and authorization. Greetings Matthias