OpenID Connect SSO

OpenID Connect is a Single sign-on (SSO) protocol supported by the JGAS.

A delegation Web service for SSO OpenID Connect based on the REST service is provided in the FGLGWS package. It is delivered in the package under FGLDIR/web_utilities/services/openid-connect/. The solution is supported on the JGAS delegation mechanism.

OpenID Connect implementation creates a circle of trust between the JGAS and an OpenID Connect provider. OpenID Connect providers include Google and Microsoft. To learn more about OpenID Connect, see the OpenID Connect web site.

SSO implementation may vary depending on the IdP, but typically it consists of the following:

Getting OAuth2 (public and share secret ids), (see Quick start: Set up OpenID Connect in JGAS)
Providing the redirect URL of the JGAS to the IdP, (see Add OpenID Connect SSO to Web application)