OAuth 2 setup for internal only servers?

karlp

Hey there everyone, has anyone gotten a non-SSL internal only server working with OAuth 2?

I can't get the Azure portal to accept my internal non-https address in the URI redirector field, and I'm wondering if OAuth2 will work at all without internet exposure.

I'd like to get email alerting working, but I don't want our osTicket website available externally.

KevinTheJedi

karlp

Unfortunately MS forces either HTTPS or localhost with HTTP. You can read more about this here:

https://learn.microsoft.com/en-us/azure/active-directory/develop/reply-url

Cheers.

karlp

Thanks Kevin. Unfortunately, there doesn't seem to be a way to configure OAuth for an internal server, as localhost doesn't work.

I've reached out to the sales team at osTicket about if their virtual appliance would provide this functionality, but have yet to hear back.

KevinTheJedi

karlp

You definitely can, how do you think we developed the code? 😉

If it's a VM you can use port forwarding and supply the forwarded port in the hostname. For example, let's say you forward port 80 on the vm to 8008 on your local machine. You can then use http://localhost:8008 in the app registration and in osTicket and that should work.

Cheers.