With SSO technology - (Single Sign-on) it is possible to automate the registration of users who will access the platform, as well as their login!
To configure the parameters of your authentication model via SSO, follow the steps below:
Configure SSO parameters for login:
1st Step: On the platform, in Settings, access the Advanced Settings menu;
2nd Step: Then, access the Single Sign-On menu and click on "Include Single Sign-on";
3rd Step: in this step, it is necessary to fill in the parameters according to the information of your authentication service:
Where:
- Name: name of the authentication model that will also be the DAM home button for login.
- Client ID ("clientId") : ID of the DAM platform client in the authentication service.
- Scope: authentication scope.
- Authorization URL ("authorizeUrl") : Authentication service authorization URL.
- URL Token ("tokenUrl") : Authentication service token URL.
- Service URL ("userUrl") : URL of the Authentication Service Users service.
- Secret key ("clientSecret"): Secret key of the DAM platform client in the authentication service (the key is encrypted and Yapoli does not have access to it).
YAP! With these parameters configured, the authentication model via SSO will be enabled.
Configure profile for user registration with SSO:
1st Step: With the SSO authentication model created, you can choose to create a new profile or edit an existing profile on the platform. In both options the path is the same: in Settings, access the "Profiles" menu;
2nd Step: Then create a new profile or choose an existing profile and edit it;
3rd Step: In the "Choose the authentication model" step, you can define whether the type of authentication for the profile will be:
- Through the Yapoli Platform: with Yourself (self-approval) or Group moderation (with users chosen as moderators)
- SSO: where the authentication scheme created and the domain for access can be defined.
4th Step: When choosing the SSO option, define the authentication scheme and the domain for access.
Once this is done, your configuration for user registration on the platform via SSO will be complete! Users can now register or login through the home button:
Comments:
- Yapoli operates as an SSO client using the OpenID Connect 1.0 standard which uses the OAuth 2.0 protocol for the authentication cycle.
- The platform operates as an open id client and offers parameters for parameters that define one or more Authorization Servers to be registered on the platform.
- When changing a profile for authentication via SSO, users already registered in that profile will continue to access the platform normally with their user data and password.
- New users, after editing a profile or creating a new profile with authentication via SSO, will only have access to the platform through the authentication service.
- Profiles with authentication via SSO are not displayed in the access request and it is also not possible to send an invitation to access the platform through it.
Comments
0 comments
Article is closed for comments.