rooty/fab-manager
1
0
Fork 0
mirror of https://github.com/LaCasemate/fab-manager.git synced 2024-12-01 12:24:28 +01:00
Code Issues Releases Activity

(doc) openid connect configuration documentation

Browse Source
This commit is contained in:
Sylvain 2022-04-20 15:22:23 +02:00
parent d72de33670
commit 000361f916
2 changed files with 24 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
doc/README.md
View File

@ -27,6 +27,7 @@ The following guides are designed for the people that perform software maintenan
- [Advanced PostgreSQL usage](postgresql_readme.md)
- [Connecting an SSO using oAuth 2.0](sso_with_github.md)
- [Connecting an SSO using OpenID Connect](sso_open_id_connect.md)
- [Upgrade from Fab-manager v1.0](upgrade_v1.md)

23
doc/sso_open_id_connect.md
View File

@ -0,0 +1,23 @@
# Single-Sign-On authentication using OpenID Connect
Configuration of an OpenID Connect provider is designed to be easier than the OAuth 2.0 authentication method.
Nevertheless, it is less powerful and allows only limited fields mapping to the OpenID `userinfo` endpoint.
We highly recommend using the [Discovery](https://openid.net/specs/openid-connect-discovery-1_0.html) mechanism to get the configuration of the OpenID Connect provider.
When configuring an authentication provider using the OpenID Connect protocol, the following fields can be mapped automatically
to the corresponding OpenID Connect claims:
- user.uid
- user.email
- user.username
- profile.first_name
- profile.last_name
- profile.avatar
- profile.website
- profile.gender
- profile.birthday
- profile.phone
- profile.address
To use the automatic mapping, add one of the fields above and click on the magic wand button near to the "Userinfo claim" input.