GIP fglprofile
Genero Identity Provider (GIP) implementation uses its own fglprofile file.
The GIP implementation uses its own fglprofile file located in $FGLDIR\web_utilities\services\gip\bin\idp.
This file can be modified to define the following features:
| Setting | Default | Description |
|---|---|---|
oidc.account.creation.allow |
false |
Enables user‑initiated account requests on the GIP. When true, users can submit a request to create a GIP account. |
oidc.account.creation.end_url |
"/demos.html" | Path (resolved relative to the GAS base URL) to redirect users after submitting the request
(for example: /demos.html). Configure this when
oidc.account.creation.allow=true |
oidc.token.scopes |
true |
Controls the JSON Web Token (JWT) scope format. When true (default), GIP produces JWTs per RFC 8693: scopes appear in a single "scope" claim as a space‑separated string. Change to false only if you have legacy consumers that require the previous "scopes" JSON array. |
oidc.form.hide_gip_login |
false |
Hide GIP local login when external IdP present. When set to true and one or more external
IdPs are configured, the GIP login page hides the local username/password fields and shows only
external IdP options. This forces users to authenticate via external providers. Note:
This does not apply to the login to the Console App, where GIP login and password fields will always be displayed. |