Versions Compared

Version Old Version 1 New Version Current
Changes made by

Silvan GrĂ¼ter

Gregory Bobst (Unlicensed)

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

  • client identifier and a client secret

  • Authentication URL

  • You might also need to provide a redirect url to your external identity provider. This is usually https://{authurl}/signin-oidc{callbackpathfromconfig}

Step 2 - Add/Configure External Identity provider

...

On the creation mask you have to provide the following data:

Property

Value

Description

Name

CoreOne Demo

The name of your external IdP

Description

The IdP of the CoreOne Demo enviroment

A description for your external IdP

Description Name Key

Customer.ExternalIdP.CoreOneDemo.Description

A translation key for the description

Display Name

CoreOne Demo Login

A display name that is presented to users

Display Name Name Key

Customer.ExternalIdP.CoreOneDemo.DisplayName

A translation key for the display name that is presented to users

Icon

-

An icon from the icon table if one has been defiend

State

Active

The state of the external IdP

Option type

GenericOpenIdConnectOptions

iTsense.CoreLogin2.Server.ExternalAuthentication.Options.GenericCustomOAuthOptions, iTsense.CoreLogin2.Server, Version=4.1911.7.1, Culture=neutral, PublicKeyToken=null

Depending on the type either select GenericOpenIdConnectOptions or GenericCustomOAuthOptions or GenericCustomWsFederationOptions

Configuration

Code Block
languagejson
{
"SignInSchema":"oidc", "Authority":

  "clientId": "cos_local",
  "clientSecret": "Secret",
  "callbackPath": "/core-login-local",
  "authorizationEndpoint": "https://demo-auth.coreone.ch/connect/authorize",
 
 "
ClientId
tokenEndpoint":
"cos_local", "ClientSecret":"Secret" }
 "https://demo-auth.coreone.ch/connect/token",
  "userInformationEndpoint": "https://
docs
demo-auth.
microsoft
coreone.
com
ch/
en-us/dotnet/api/microsoft.aspnetcore.authentication.openidconnect.openidconnectoptions?view=aspnetcore-3.1
connect/userinfo"
}

Authentication scheme

oidc

Usually oidc or oauth

CoreLoginLocal

A unique scheme name

Trusted Address

https://demo-auth.itsense.ch

The URL where the user will be redirected to

Link user autmoaticaly

true

Whether or not user shall be linked automatically. If disabled, the user will be presented with a confirmation screen.

Step 3 - Define the attribute mapping

...

Example for Attribute Mappings:

Attribute

Identifies the user

Original Claim Type Name

Surename

false

http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname

Givenname

false

http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname

Email

true

http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress

Step 4 - Add the external provider to your Level of Authentication

...