After I enabled SSO on an I-Doit installation, the API access via X-RPC-Auth-Username and X-RPC-Auth-Password won't work any more, because Apache will redirect to the OIDP via 302 status.
I suggest to extend the Apache Configuration Section to include the following lines:
<Location />
AuthType openid-connect
Require valid-user
AllowOverride All
</Location>
<Location /src/jsonrpc.php>
AuthType none
AllowOverride None
Require all granted
</Location>
Which will except the API from hitting the OAuth configuration.
After I enabled SSO on an I-Doit installation, the API access via X-RPC-Auth-Username and X-RPC-Auth-Password won't work any more, because Apache will redirect to the OIDP via 302 status.
I suggest to extend the Apache Configuration Section to include the following lines:
Which will except the API from hitting the OAuth configuration.