If you are using a different Identity Provider that supports the OpenID Standard, you will need to add an Application Integration with the following parameters:
-
Type: Web Application
-
Proof Key for Code Exchange: Authorisation code flow with PKCE grant
-
Redirect URI:
https://obs.services.igel.com -
The following
scopeand claim values must be supported:-
openid -
profile
The following Claim Values need to be requested byprofile:-
name -
preferred_username
-
-
email
The following Claim Values need to be requested byemail:-
email
-
-
For the detailed description of scope and claim values, see the relevant section of the OpenID Connect Basic Client Implementer's Guide at https://openid.net/specs/openid-connect-basic-1_0.html#Scopes .
With this configured on your Application Integration, you provide the following information in our IGEL Customer Portal:
-
Authorization Endpoint
The URL to initiate the authentication -
TOKEN Endpoint
URL to request a token from -
CLIENT ID
ID of the registered application in the IdP -
CLIENT SECRET
Secret of the registered application in the IdP