OAuth 2.0 Authentication Integration
# OAuth 2.0 Protocol (Recommended)
It is recommended that you integrate your application system through the OAuth 2.0 protocol authentication.
# Preparation
Enterprise administrators can refer to Configuring OAuth 2.0 Protocol Application SSO to create an OAuth 2.0 protocol application on the IDaaS Enterprise Center platform.
# Development Integration
After the application configuration is complete, please refer to the corresponding mode in OAuth 2.0 Protocol to complete the subsequent integration configuration.
# Demo Demonstration
# IDaaS Configuration
- Log in to the IDaaS administrator platform, add an OAuth 2.0 protocol application for client application integration. The authentication configuration is as follows. Enable the Implicit Grant mode separately. The callback address is:
idaas://bamboocloud/sso/oauth(Theidaasprotocol can be used to launch the client application).
- Obtain the authentication interface configuration for the tenant's OAuth 2.0 protocol. Open 【Settings - Service Configuration - OIDC】.
# Client Configuration
- Open the client, select Oauth2, and add Oauth2 authentication configuration. The configuration content is as follows.
Click SSO Login to simulate initiating an authentication request from the client.
After successful login to IDaaS, the browser launches the client.
- The client listens to the callback address, obtains the access_token, retrieves user information through the pre-configured user info endpoint, and completes the OAuth 2.0 authentication.
- Click on the username to view user information details.
Close the client to simulate initiating an authentication request from the browser.
Open a browser, access the IDaaS User Center, and access the integrated IDaaS client application.
The browser launches the client. The client listens to the callback address, completes OAuth 2.0 authentication, obtains user information, and completes client authentication.