To import an IdP metadata for OAuth2, you must execute the ImportOAuth command with the
--import option to register the metadata.
About this task:This is a once-off operation to register
the IdP's OAuth2 endpoints in the GAS. Once the endpoints are registered in the database, you can
continue to configure your applications to use the IdP. For details about the ImportOAuth tool, go
to
ImportOAuth.
Important:
If the IdP is using the OpenID Connect protocol, there is no need to use the
ImportOAuth program as OpenID Connect has the metadata feature that allows
Genero's OpenID Connect service to automatically fetch the metadata, including all the endpoint
URLs, from the IdP.
Steps
-
Open a command prompt.
-
Type the command to change to the Genero BDL installation directory:
-
Execute the script to set the environment.
-
Run the ImportOAuth command to import the endpoints.
This example provides the command for Instagram; line breaks have been added for
readability.
fglrun ImportOAuth --import
--authz https://api.instagram.com/oauth/authorize
--token https://api.instagram.com/oauth/access_token
--logout https://instagram.com/accounts/logout
--profile https://api.instagram.com/v1/users/self?
https://www.instagram.com
The first two parameters
--authz and
--token are mandatory,
and the endpoint URLs of the IdP are required:
--authz URL: mandatory authorization endpoint URL.--token URL: mandatory token endpoint URL.--logout URL: optional logout endpoint URL.--profile URL: optional user profile endpoint URL. - URL of the IdP: mandatory