Skip to Main Content
HCL Domino Ideas Portal

Welcome to the #dominoforever Product Ideas Forum! The place where you can submit product ideas and enhancement request. We encourage you to participate by voting on, commenting on, and creating new ideas. All new ideas will be evaluated by HCL Product Management & Engineering teams, and the next steps will be communicated. While not all submitted ideas will be executed upon, community feedback will play a key role in influencing which ideas are and when they will be implemented.

For more information and upcoming events around #dominoforever, please visit our Destination Domino Page

Status Under Consideration
Workspace Domino
Categories Security
Created by Guest
Created on Apr 12, 2023

Configure the Domino HTTP server to ignore "Authorization: Bearer" headers on Domino 12.0.2

This has always worked well in Domino 10, 11 and 12.0 but now HCL has implemented an option on the internet site to use a bearer token.


The problem with this option is that you then need to configure an OIDC provider which is not well documentated and will not work with certain SAML-providers, but even then the bearer token is not transferred to our own code (we run Java on OSGi) so we cannot use our JWT bearer token code to log into Domino anymore.


This feature forces us to leave the Domino platform if we don't get an ignore option... :-(

  • Attach files
  • Admin
    Thomas Hampel
    Reply
    |
    May 14, 2023
    Thank you
  • Guest
    Reply
    |
    Apr 13, 2023

    Yes, I did create a ticket to report this: CS0382142. We also send over part of our code and an updatesite.nsf to run this on a Domino server. However they send us to this forum to pitch this

  • Admin
    Thomas Hampel
    Reply
    |
    Apr 13, 2023
    I guess you have already opened a ticket to report this as an issue. Can you please supply the ticket number for reference?