OpenID Connect SSO
OpenID Connect is a Single sign-on (SSO) protocol supported by the Genero Application Server.
A delegation Web service for SSO OpenID Connect based on the REST service is provided in the FGLGWS package. It is delivered in the package under FGLDIR/web_utilities/services/openid-connect/. The solution is supported on the GAS delegation mechanism.
Tip: A sample implementation of Single Sign On (SSO) for Genero with support for
re-login after a period of inactivity can be found under the Four Js Genero GitHub repository. See
https://github.com/FourjsGenero/ex_simplesso.
OpenID Connect implementation creates a circle of trust between the Genero Application Server and an OpenID Connect provider. OpenID Connect providers include Google and Microsoft. To learn more about OpenID Connect, see the OpenID Connect web site.
SSO implementation may vary depending on the IdP, but typically it consists of the
following:
- Getting OAuth2 (public and share secret ids), (see Quick start: Set up OpenID Connect in the GAS)
- Providing the redirect URL of the GAS to the IdP, (see Add OpenID Connect SSO to Web application)