OAuth2 Prerequisites¶
Before configuring OAuth SSO for the portal, gather the following values from your OAuth 2.0 or OpenID Connect-compliant Identity Provider (IdP):
- Client ID: A unique identifier assigned to your application by the IdP.
- Client Secret: A confidential string used by the application to authenticate with the IdP.
- Authorization Endpoint: The URL where the OAuth authorization request is initiated.
- Token Endpoint: The URL used to exchange the authorization code for an access token.
- User Info Endpoint: The URL used to retrieve the authenticated user's profile information using the access token.
- Issuer URI: A unique identifier for the IdP, used for token validation in OpenID Connect flows.
Note
You can find the Issuer URI from the open-id configuration JSON which is usually accessible by appending /.well-known/openid-configuration
to the base URI of your IdP and accessing it in a browser or via a curl command. Usually the issuer URI is the base URL of your IdP.
For example:
https://your-idp.com/.well-known/openid-configuration
This returns metadata such as the issuer URI, token endpoint, authorization endpoint, supported scopes and other configuration details.
-
Prev
-
Next