Configuring OIDC Protocol Application SSO

Overview

In addition to supporting the configuration of the OIDC protocol as an authentication source for logging into various application systems, the IDaaS platform also supports integrating applications via the OIDC protocol to achieve application single sign-on (SSO). With IDaaS as the authentication platform, users can directly jump to log into the application after logging into the IDaaS User Center, without needing a second login.

Prerequisites

Have administrator permissions for the IDaaS Enterprise Center platform.

Steps

Configuring an OIDC Protocol Application

1. Log in to the IDaaS Enterprise Center platform, select "Resources > Applications" in the top navigation bar, click "Add Self-built Application", set the application name, and save. Then, enter the application details page.

2. On the application information page, enable "Authentication Integration", set it to OIDC, and save.

3. Click "Configure" next to "Authentication Integration" to enter the authentication integration details page. Set the authorization mode and token signature algorithm that match your application.

4. Switch to the "General Information" tab to obtain the ClientId and ClientSecret.

7. Switch to the "Authorization Management > Application Accounts" page to add access accounts for the application.

8. In the top navigation bar, select "Settings > Service Configuration", click "OIDC" to obtain the corresponding parameters.

9. Configure the obtained OIDC-related information into your application.

Development Integration

After configuration is completed on the IDaaS platform, please refer to the corresponding mode in the OIDC Protocol to complete the subsequent integration configuration. Once configured, users can single sign-on to this application from the User Center.