the supplied oath2 solution is for folks that have nothing to tie into in terms of credentials, it's better than using a jetty user with basic auth, and probably even better than using the database authentication
however, the ideal is to deploy ords with tomcat or wls, and tie into your existing auth solutions
thank you for the answer. it seems that if we could handle AuthZ and AuthN in Tomcat,
we would still use ORDS 19.4 for the RESTful API part.
we are working on a very big project in Norway to implement ORDS 19.4 + Tomcat 9.0 + Oauth 2.0 + AAD IdP
we are about to use the following component to test the integration :
OpenID Connect Authenticator for Tomcat
Do you have any experience with the above connector ?
Do you have any other suggestions for handling AuthZ and AuthN with Tomcat towards AAD ?