Skip to content

OAuth2 Prerequisites

Before configuring OAuth SSO for the portal, gather the following values from your OAuth 2.0 or OpenID Connect-compliant Identity Provider (IdP):

  • Client ID: A unique identifier assigned to your application by the IdP.
  • Client Secret: A confidential string used by the application to authenticate with the IdP.
  • Authorization Endpoint: The URL where the OAuth authorization request is initiated.
  • Token Endpoint: The URL used to exchange the authorization code for an access token.
  • User Info Endpoint: The URL used to retrieve the authenticated user's profile information using the access token.
  • Issuer URI: A unique identifier for the IdP, used for token validation in OpenID Connect flows.

Note

You can find the Issuer URI from the open-id configuration JSON which is usually accessible by appending /.well-known/openid-configuration to the base URI of your IdP and accessing it in a browser or via a curl command. Usually the issuer URI is the base URL of your IdP.

For example:
https://your-idp.com/.well-known/openid-configuration
This returns metadata such as the issuer URI, token endpoint, authorization endpoint, supported scopes and other configuration details.

Comments