-
Notifications
You must be signed in to change notification settings - Fork 386
Oauth
jrobinso edited this page Jan 25, 2023
·
1 revision
##Configuring an OAuth provider
####Required
- client_id
- client_secret
- authorization_endpoint
- token_endpoint
####Optional - may be required by some providers
- hosts - Array of host strings for this authorization provider. URLs with these hosts will require authentication.
- auth_provider - Used to name a menu to provide a logout option.
- app_id_uri - Sometimes required by Microsoft Azure. Passed to the authorization_endpoint as parameter "resource".
- scope - Scope of the authorization request.*
- find_string
- replace_string "aws_cognito_fed_pool_id": "ap-southeast-2:15b7bf93-18ca-40d5-99e9-38b4eb69363e", "aws_cognito_pool_id": "ap-southeast-2_IYMvlZzmv", "aws_cognito_role_arn": "arn:aws:iam::YOUR_AWS_ACCOUNT:role/YOUR_Cognito_igvAuth_Role"
##Examples
Note all keys, secrets, etc are random strings and presented for illustration only.
####Microsoft
{
"client_id": "hbq82djj-wxky-7iub-j7zq-7i8nv72n48nq",
"client_secret": "cVAX64fXRikCLmtLEb/cktrAtaHz/tmB3WegtnbXN2Gq",
"authorization_endpoint": "https://login.microsoftonline.com/77nwe2q2-e11k-uq2p-7vdh-9z7px83zmtiv/oauth2/authorize",
"token_endpoint": "https://login.microsoftonline.com/77nwe2q2-e53r-lk5z-7vdh-9z7px83zmtiv/oauth2/token",
"hosts": ["prod.mayo.edu", "dev.mayo.edu", "int.mayo.edu"],
"auth_provider": "Mayo Clinic",
"app_id_uri": "https://orgtools.onmicrosoft.com/6q9qk3mr-tw99-eu73-rt3k-nqw2aqidutm9",
"scope": "openid",
"find_string": "dept",
"replace_string": "dept-oauth2"
}