I'm not sure what OpenID Connect apache module you are using. I assume its the Ping Identity module by Hans Zandebelt? We tested this a few times. Did you review http://ox.gluu.org/doku.php?id=mod_auth_oidc At what point do you get stuck?

Mike, Yes you are right. I used https://github.com/pingidentity/mod_auth_openidc/archive/master.zip I also reviewed the the link and by following it I am able to achieve the following: Install GLUU server on Ubuntu 14.04 as gluu.example.com Created a user farhan in GLUU repo Install Apache server on a different machine as openid.example.com Configure OpenID Connect apache module on openid.example.com machine Created a “protected” folder in apache which will be accessed via OpenID Connect Testing: Click "https://openid.example.com/protected” Click on “gluu.example.com” Enter “farhan” as userid and password Click on “Allow” and landed on the test page successfully. Action Item: Now i have to configure this with Google as OpenID Provider. I want to achieve the following: 1) User try to access a protected page by GLUU 2) Apache OpenID Connect module intercepts the request and redirects to GLUU Discovery page 3) GLUU redirects to Google Login page 4) User enteres his credentials at google page and after successfully authentication, google sends the access token, etc to GLUU 5) gluu serches for a user in its user's directory; if user does not exist it gets created 6) gluu creates an access token for protected page 7) gluu redirects user to a protected page Farhan.

I am able to integrate Apache OpenID Connect module to work with Google. Looking into how i can integrate Google and GLUU while keeping this setup such that account can be created in GLUU repo if it doesn't exist which is authenticated via Google.

where are you putting the gluu ce server information in mod_auth_openidc? for me, after entering username@gluuhostname in apache2 server, it is getting redirected to index.html, not in gluuserver login page?

Yes that's the missing piece. I want to bring in GLUU between Apache and Google, such that if a already authenticated user from Google is not found in GLUU repo, it gets dynamically created in GLUU repo. Make sense ? Farhan.